Cross Site Scripting vulnerability in webkil Bagisto v.1.5.0 and before allows an malicious user to execute arbitrary code via a crafted SVG file uplad.
webkul bagisto