A cross-site scripting (XSS) vulnerability in the...
Critical severity
Unreviewed
Published
Apr 17, 2024
to the GitHub Advisory Database
•
Updated Aug 15, 2024
Description
Published by the National Vulnerability Database
Apr 17, 2024
Published to the GitHub Advisory Database
Apr 17, 2024
Last updated
Aug 15, 2024
A cross-site scripting (XSS) vulnerability in the Settings section of WonderCMS v3.4.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the WEBSITE TITLE parameter under the Menu module.
References