Esteban Montes comments

Repositories
Issues
Comments

Results 2 comments of


                                            Esteban Montes

XSS in the file upload functionality

that's a self-XSS, exploitability is almost null.

XSS in the file upload functionality

@uzakov I agree that's a bad practice and there are multiple scenarios where it can be useful. However, official score you've set for the CVE is 6,4, which is extremely...