A server-side request forgery (SSRF) vulnerability in the addCustomThemePluginRepository function in index.php in WonderCMS 3.1.3 allows remote attackers to execute arbitrary code via a crafted URL to the theme/plugin installer.
{ "extracted_events": [ { "introduced": "3.1.3" }, { "last_affected": "3.1.3" } ], "cpe": "cpe:2.3:a:wondercms:wondercms:3.1.3:*:*:*:*:*:*:*", "source": "CPE_STRING" }
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2020-35313.json"