2 matches found
CVE-2023-43857
Dreamer CMS v4.1.3 was discovered to contain a stored cross-site scripting XSS vulnerability via the component /admin/u/toIndex...
CVE-2023-43857
Dreamer CMS v4.1.3 is affected by a stored cross-site scripting (XSS) vulnerability in the /admin/u/toIndex component. The issue arises from insufficient filtering/escaping of user input, allowing an attacker to inject and execute arbitrary web scripts or HTML. The CVE-2023-43857 entry is consist...