CVE-2023-46054 Information

Description

Cross Site Scripting (XSS) vulnerability in WBCE CMS v.1.6.1 and before allows a remote attacker to escalate privileges via a crafted script to the website_footer parameter in the admin/settings/save.php component.

Reference

https://github.com/aaanz/aaanz.github.io/blob/master/XSS.md