A Server-Side Request Forgery (SSRF) in the getFileFromRepo function of WonderCMS v3.1.3 allows attackers to force the application to make arbitrary requests via injection of crafted URLs into the pluginThemeUrl parameter.
{ "versions": [ { "introduced": "0" }, { "last_affected": "3.1.3" } ] }
"https://storage.googleapis.com/cve-osv-conversion/osv-output/CVE-2024-27563.json"