CVE-2023-41425 Information

Description

Cross Site Scripting vulnerability in Wonder CMS v.3.2.0 thru v.3.4.2 allows a remote attacker to execute arbitrary code via a crafted script uploaded to the installModule component.

Reference

http://wondercms.com https://gist.github.com/prodigiousMind/fc69a79629c4ba9ee88a7ad526043413