CVE-2019-10646
CVE-2019-10646 affects Wolf CMS v0.8.3.1 with a reflected/stored XSS in the Add Snippet module (/?/admin/snippet/add). An attacker can inject arbitrary JavaScript as user input, which executes when the affected snippet loads. This vulnerability is confirmed by multiple sources in the connected do...