2 matches found
WolfCMS Cross-Site Scripting Vulnerability (CNVD-2018-07056)
Wolf CMS is a lightweight content management system written in PHP. A stored cross-site scripting vulnerability exists in WolfCMS 0.8.3.1 in the Layout Name under the Layout tab. A low-privileged user can exploit this vulnerability to steal cookies from administrative users and compromise the...
Arbitrary File Write Vulnerability in Wolf CMS 0.8.3.1 Backend
Wolf CMS is a lightweight CMS program written in PHP. The latest version of Wolf CMS, version 0.8.3.1, has an arbitrary file write vulnerability in the backend, which can be exploited to create files with arbitrary suffixes and write arbitrary content. An attacker can use this vulnerability to...