EIP-2026-111937

The provided text describes a vulnerability in Schoolhos CMS 2.29, specifically an arbitrary file-upload vulnerability and multiple HTML-injection vulnerabilities due to improper input sanitization. It mentions potential impacts such as arbitrary script execution in a user's browser or arbitrary code execution on the server.