Lucene search
GoogleOSV:CVE-2018-1000062HistoryFeb 09, 2018 - 11:29 p.m.
CVE-2018-1000062
2018-02-0923:29:02
Google
osv.dev
3
WonderCMS version 2.4.0 contains a Stored Cross-Site Scripting on File Upload through SVG vulnerability in uploadFileAction(), ‘svg’ => ‘image/svg+xml’ that can result in An attacker can execute arbitrary script on an unsuspecting user’s browser. This attack appear to be exploitable via Crafted SVG File.
Related
cvelist
cvelist
CVE-2018-1000062
2022-10-03 16:21:59
nvd
nvd
CVE-2018-1000062
2018-02-09 23:29:02
prion
prion
Cross site scripting
2018-02-09 23:29:00
cve
cve
CVE-2018-1000062
2022-10-03 16:21:59