Description
Craft CMS before 2.6.2982 allows for a potential XSS attack vector by uploading a malicious SVG file.
Remediation
References
Related Vulnerabilities
WordPress Plugin Captcha by BestWebSoft Multiple Cross-Site Scripting Vulnerabilities (4.0.2)
WordPress Plugin NextCellent Gallery-NextGEN Legacy Cross-Site Scripting (1.9.27)
WordPress Plugin WordPress Download Manager Cross-Site Scripting (3.2.21)
Apache HTTP Server CVE-2016-5387 Vulnerability (CVE-2016-5387)