Xul18

**Name of the Vulnerable Software and Affected Versions** SofaWiki versions prior to 3.8.9 **Description** The issue is related to a file upload vulnerability that can lead to command execution. **Recommendations** For versions prior to 3.8.9, update to version 3.8.9 or later to resolve the issue.

**Name of the Vulnerable Software and Affected Versions** SofaWiki versions prior to 3.8.10 **Description** The issue is related to Cross Site Scripting (XSS) that can be exploited via the index.php file. **Recommendations** For versions prior to 3.8.10, update to version 3.8.10 or later to resolve the issue.