Unrated severityNVD Advisory· Published Apr 17, 2024· Updated Aug 14, 2024
CVE-2024-32340
CVE-2024-32340
Description
A cross-site scripting (XSS) vulnerability in the Settings section of WonderCMS v3.4.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the WEBSITE TITLE parameter under the Menu module.
Affected products
2Patches
Vulnerability mechanics
News mentions
0No linked articles in our index yet.