5 matches found
CVE-2022-43128
CVE-2022-43128 is a duplicate of CVE-2022-42245 and references Dreamer CMS 4.0.01 as vulnerable to SQL Injection. Public PoCs show an SQLi in Dreamer CMS (notably via POST to /admin/search/doSearch and related ArchivesMapper.xml usage) with v4.0.0 demonstrated in external advisories and exploit l...
CVE-2022-42245
Dreamer CMS 4.0.01 is vulnerable to SQL Injection...
CVE-2022-42245
Dreamer CMS 4.0.01 is affected by a SQL Injection vulnerability (CVE-2022-42245). Affected component: Dreamer CMS frontend/backend code handling queries. Root cause described as SQL injection, with CVSSv3.1 score 9.8 (Network, no user interaction, privileges required none; confidentiality, integr...
CVE-2022-42245
Dreamer CMS 4.0.01 is vulnerable to SQL Injection...
CVE-2022-42245
Dreamer CMS 4.0.01 is vulnerable to SQL Injection...