CVE-2018-7302 admin 6년 ago CVE-2018-7302 Tiki 17.1 allows upload of a .PNG file that actually has SVG content, leading to XSS. Source: CVE-2018-7302