2 matches found
CVE-2024-36773
A cross-site scripting XSS vulnerability in Monstra CMS v3.0.4 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Themes parameter at index.php...
CVE-2024-36773
CVE-2024-36773 is a cross-site scripting (XSS) vulnerability in Monstra CMS v3.0.4 . The weakness allows an attacker to inject and execute arbitrary web scripts or HTML via a crafted payload in the Themes parameter at index.php . The NVD/CVE record notes a medium severity (CVSS v3.1: 4.8) with ne...