[Forgot Password]
Login  Register Subscribe

30479

 
 

423868

 
 

249622

 
 

909

 
 

195549

 
 

282

 
Paid content will be excluded from the download.


Download | Alert*
CVE
view JSON

CVE-2024-32206Date: (C)2024-04-22   (M)2024-04-23


A stored cross-site scripting (XSS) vulnerability in the component afficheadminindex.php of WUZHICMS v4.1.0 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the $formdata parameter.

Reference:
http://wuzhicms.com
https://github.com/majic-banana/vulnerability/blob/main/POC/WUZHICMS4.1.0%20Stored%20Xss%20In%20Affiche%20Model.md
https://github.com/wuzhicms/wuzhicms

© SecPod Technologies