EPSS
Percentile
24.8%
Studio in Open edX Ironwood 2.5 allows users to upload SVG files via the βContent>File Uploadsβ screen. These files can contain JavaScript code and thus lead to Stored XSS.
stark0de.com/2020/05/17/openedx-vulnerabilities.html