Stored Cross-Site Scripting (XSS) via uploaded files served inline in FileField and ImageField

PKSA-8yhb-cz5n-f41h

Affected version: >=5.0.0,<5.0.13

Reported by:
FriendsOfPHP/security-advisories