[php-mod/curl] php-mod/curl allows Cross-site Scripting

php-mod/curl (a wrapper of the PHP cURL extension) before 2.3.2 allows XSS via the post_file_path_upload.php key parameter and the POST data to post_multidimensional.php.

References

• https://nvd.nist.gov/vuln/detail/CVE-2021-30134
• https://wpscan.com/vulnerability/0b547728-27d2-402e-ae17-90d539344ec7
• https://github.com/advisories/GHSA-f8p3-q834-q9cj