Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')
The Image Import function in XWiki through 10.7 has XSS.
Advisories for Maven/Org.xwiki.commons/Xwiki-Commons-Pom package
2022
The Image Import function in XWiki through 10.7 has XSS.