XSS in WonderCMS 343 (SETTINGS -> CURRENT PAGE) Software link: WonderCMS 343 [wwwwondercmscom/download] @author: Antonio Díaz Description: Cross-site scripting (XSS) vulnerability in CURRENT PAGE of the SETTINGS section of WonderCMS 343 allow attackers to execute arbitrary web scripts or HTML via a crafted payload injected into several fields: