Share:

CVE-2020-24138 - Wcms Wcms

April 7, 2021

Moderate 6.1

Cross Site Scripting (XSS) vulnerability in wcms 0.3.2 allows remote attackers to inject arbitrary web script and HTML via the pagename parameter to wex/html.php.

Affected software

Wcms Wcms

Reference links

https://github.com/vedees/wcms/issues/10

Get alerted to vulnerabilities in your software

CVE alerts, vulnerability alerts, latest versions and news matched to your software stack.