CVE-2018-17024
Monstra CMS 3.0.4 is vulnerable to cross-site scripting via the page_meta_title parameter in the admin/index.php add_page action (CVE-2018-17024). Connected documents confirm the affected component and vulnerability type; no exploitation or remediation details are provided in the supplied sources.