CVE-2018-18419
CVE-2018-18419: Stored XSS in ARDAWAN.COM User Management 1.1. The vulnerability is triggered via a crafted .jpg filename uploaded through the /account endpoint, enabling script injection in user management’s upload section. Documented across multiple sources (NVD entry, CNVD/CVE mirrors, exploit...