CVE-2020-11712

CVE-2020-11712

Open Upload through 0.4.3 allows XSS via index.php?action=u and the filename field.

Source: CVE-2020-11712