CVE-2023-48060

Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin/task/add...

CVE-2023-48060

Dreamer CMS v4.1.3 contains a Cross-Site Request Forgery (CSRF) in the component "/admin/task/add". The root cause is a CSRF flaw that can enable unauthorized actions on behalf of a user; CVSSv3.1: 8.8 (HIGH) with network attack vector, low attack complexity, no privileges, user interaction requi...

PT-2023-30688 · Unknown · Dreamer Cms

Name of the Vulnerable Software and Affected Versions: Dreamer CMS version 4.1.3 Description: A Cross-Site Request Forgery CSRF issue was discovered in the component "/admin/task/add". This issue may allow unauthorized actions to be performed on behalf of a user. Recommendations: For Dreamer CMS...

Dreamer CMS Security Vulnerability

Dreamer CMS is a Dreamer Content Management System by Junnan Wang, an individual developer in China. A security vulnerability exists in Dreamer CMS version 4.1.3, which stems from a cross-site request forgery CSRF vulnerability in component /admin/task/add...