Persistent XSS in Pixelimity 1.0 via admin/portfolio.php data[title] parameter
CVE-2018-19919 · LOW Severity
AV:N/AC:M/AU:S/C:N/I:P/A:N
Pixelimity 1.0 has Persistent XSS via the admin/portfolio.php data[title] parameter, as demonstrated by a crafted onload attribute of an SVG element.
Learn more about our Web Application Penetration Testing UK.