Description

A cross-site scripting (XSS) vulnerability in the Settings section of WonderCMS v3.4.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the PAGE TITLE parameter under the Current Page module.

INFO

Published Date :

2024-04-17T00:00:00.000Z

Last Modified :

2024-08-02T02:06:44.047Z

Source :

mitre
AFFECTED PRODUCTS

The following products are affected by CVE-2024-32338 vulnerability.

Vendors Products
Wondercms
  • Wondercms
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-32338.

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact