2024-10-25 00:00:00
mitre
PUBLISHED
An issue was discovered in WTCMS 1.0. In the plupload method in AssetController.class.php, the app parameters arent processed, resulting in Cross Site Scripting (XSS).