EIP-2026-100303

This is a security advisory detailing two vulnerabilities in Ektron CMS: unauthenticated file upload leading to RCE and XXE injection for internal scanning or file disclosure. No exploit code is provided.