Brizy

Authenticated (Author+) Stored CrossSite Scripting via SVG File Upload vulnerability <= 2.6.8

Authenticated (Contributor+) Arbitrary File Upload via storeUploads vulnerability <= 2.6.4

CrossSite Request Forgery vulnerability <= 2.5.1

Authenticated (Contributor+) Arbitrary File Upload vulnerability <= 2.4.44

Missing Authorization to Authenticated (Contributor+) Post Modification vulnerability <= 2.4.44