CVE-2021-20103

Machform prior to version 16 is vulnerable to stored cross-site scripting due to insufficient sanitization of file attachments uploaded with forms through upload.php. > MITRE Terms of Use apply – see LICENSE‑MITRE.txt