The smarty_self function in modules/module_smarty.php in PivotX 2.3.11 mishandles the URI, allowing XSS via vectors involving quotes in the self Smarty tag.Referenceshttps://sourceforge.net/p/pivot-weblog/code/4487/
