Security Advisory
CVE-2024-41304
CVE vulnerability detail — eXtreme Datacenter Security Operations
Description
An arbitrary file upload vulnerability in the uploadFileAction() function of WonderCMS v3.4.3 allows attackers to execute arbitrary code via a crafted SVG file.