Name of the Vulnerable Software and Affected Versions: Camaleon CMS (affected versions not specified)

Description: A stored cross-site scripting issue has been found in the image upload functionality, allowing normal registered users to upload SVG images containing JavaScript or HTML documents by manually changing the format parameter. This can lead to malicious JavaScript execution on behalf of authenticated users or administrators, potentially resulting in account takeover due to reflected Cross-site scripting (XSS).

Recommendations: To resolve the issue, consider the following: Only allow the upload of safe files such as PNG, TXT, and others. Serve all "unsafe" files such as SVG and other files with a content-disposition: attachment header to prevent browsers from displaying them. Create a Content security policy (CSP) that disallows inlined script, and modify other parts of the application as needed to continue functioning. Mark the auth token with HttpOnly to prevent theft. Consider using the authentication provided by Ruby on Rails to limit the use of stolen tokens.