CVE-2018-6902by Jeremyin Security Bulletinson Posted on April 15, 2018 PHP Scripts Mall Image Sharing Script 1.3.3 has XSS via the Full Name field in an Edit Profile action.