Description

A cross-site scripting (XSS) vulnerability in the Settings section of WonderCMS v3.4.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the WEBSITE TITLE parameter under the Menu module.

INFO

Published Date :

2024-04-17T00:00:00.000Z

Last Modified :

2024-08-14T20:22:07.492Z

Source :

mitre
AFFECTED PRODUCTS

The following products are affected by CVE-2024-32340 vulnerability.

Vendors Products
Wondercms
  • Wondercms
REFERENCES

Here, you will find a curated list of external links that provide in-depth information to CVE-2024-32340.

CVSS Vulnerability Scoring System

Detailed values of each vector for above chart.
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality Impact
Integrity Impact
Availability Impact