Wondercms: >> Wondercms >> 3.3.4 Security Vulnerabilities
Cross Site Scripting vulnerability in Wonder CMS v.3.2.0 thru v.3.4.2 allows a remote attacker to execute arbitrary code via a crafted script uploaded to the installModule component.
CVSS Score
6.1
EPSS Score
0.799
Published
2023-11-07
A cross-site scripting (XSS) vulnerability in Wondercms v3.3.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Site title field of the Configuration Panel.
CVSS Score
6.1
EPSS Score
0.002
Published
2022-11-17