CVE-2024-41304

Publication date

2024-07-30 00:00:00

Family

mitre

State

PUBLISHED

Description

An arbitrary file upload vulnerability in the uploadFileAction() function of WonderCMS v3.4.3 allows attackers to execute arbitrary code via a crafted SVG file.