CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

6 matches found

ATTACKERKB•added 2023/10/17 2:15 p.m.•0 views

CVE-2023-45905

Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin/variable/add...

8.8CVSS5.8AI score0.00076EPSS

Exploits1References2

OSV•added 2023/10/17 2:15 p.m.•17 views

CVE-2023-45905

Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin/variable/add...

8.8CVSS7.5AI score

Exploits0References1

Prion•added 2023/10/17 2:15 p.m.•12 views

Cross site request forgery (csrf)

Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin/variable/add...

6.8CVSS8.8AI score0.00076EPSS

Exploits1References1Affected Software1

CNNVD•added 2023/10/17 12:0 a.m.•1 views

Dreamer CMS Cross-Site Request Forgery Vulnerability

Dreamer CMS is a dreamer content management system by Junnan Wang, an individual developer in China. A security vulnerability exists in Dreamer CMS version v4.1.3. An attacker can exploit this vulnerability to conduct cross-site request forgery CSRF attacks via the component /admin/variable/add...

8.8CVSS6.8AI score0.00076EPSS

Exploits1References2

Positive Technologies•added 2023/10/17 12:0 a.m.•2 views

PT-2023-29759 · Unknown · Dreamer Cms

Name of the Vulnerable Software and Affected Versions: Dreamer CMS version 4.1.3 Description: A Cross-Site Request Forgery CSRF issue was discovered in Dreamer CMS via the /admin/variable/add API endpoint. This allows an attacker to perform unauthorized actions on the system. Recommendations: For...

8.8CVSS6.8AI score0.00076EPSS

Exploits1References8