CVE-2022-36748 Information

Description

PicUploader v2.6.3 was discovered to contain a cross-site scripting (XSS) vulnerability via the component /master/index.php.

Reference

https://github.com/xiebruce/PicUploader/issues/80