MRCMS 代码注入漏洞

MRCMS is a content management system by the individual developer of marker. A code injection vulnerability exists in MRCMS version 3.1.2, which stems from the improper handling of the parameter Name in the file /admin/category/add.do in the component Category Management Page, which could lead to ...

CVE-2023-45901

Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin/category/add...

CVE-2023-45901

Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin/category/add...

CVE-2023-45901

Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin/category/add...

Cross site request forgery (csrf)

Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin/category/add...

PT-2023-29755 · Unknown · Dreamer Cms

Name of the Vulnerable Software and Affected Versions: Dreamer CMS version 4.1.3 Description: A Cross-Site Request Forgery CSRF issue was discovered in the /admin/category/add component. This allows for unauthorized actions to be performed on behalf of a user. Recommendations: For Dreamer CMS...

Dreamer CMS Cross-Site Request Forgery Vulnerability

Dreamer CMS is a dreamer content management system by Junnan Wang, an individual developer in China. A security vulnerability exists in Dreamer CMS version v4.1.3. An attacker can exploit this vulnerability to conduct cross-site request forgery CSRF attacks via the component /admin/category/add...

SQL Injection Vulnerability in phpaaCMS

phpaaCMS is a simple article management system. A SQL injection vulnerability exists in /admin/category.add.php in phpaaCMS v0.5, which can be exploited by attackers to obtain sensitive information about the database...