Security Advisory

CVE-2020-35313

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-04-20 19:05:37

Last updated 2024-08-04 17:02:07

Assigner mitre

State PUBLISHED

Description

A server-side request forgery (SSRF) vulnerability in the addCustomThemePluginRepository function in index.php in WonderCMS 3.1.3 allows remote attackers to execute arbitrary code via a crafted URL to the theme/plugin installer.

← Browse all CVEs View on cve.org ↗