Hippo CMS 10.1 - Multiple Vulnerabilities
This exploit demonstrates an XXE (XML External Entity) vulnerability in Hippo CMS 10.1, allowing arbitrary file disclosure via SVG upload. It also includes a stored XSS vulnerability example.