CVE-2024-32341

2024-04-1721:15:09

[email protected]

web.nvd.nist.gov

cve-2024-32341

cross-site scripting

home page

wondercms

arbitrary web scripts

html

crafted payload

parameters

5.9 Medium

AI Score

Confidence

High

0.0004 Low

EPSS

Percentile

9.0%

JSON

Multiple cross-site scripting (XSS) vulnerabilities in the Home page of WonderCMS v3.4.3 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into any of the parameters.

References

github.com/adiapera/xss_home_page_wondercms_3.4.3