VYPR
Unrated severityNVD Advisory· Published Apr 17, 2024· Updated Aug 14, 2024

CVE-2024-32340

CVE-2024-32340

Description

A cross-site scripting (XSS) vulnerability in the Settings section of WonderCMS v3.4.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the WEBSITE TITLE parameter under the Menu module.

Affected products

2

Patches

Vulnerability mechanics

News mentions

0

No linked articles in our index yet.