2 matches found
CVE-2023-45901
Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin/category/add...
CVE-2023-45901
Dreamer CMS v4.1.3 is affected by a CSRF in the /admin/category/add component. The vulnerability is documented across multiple sources (CVE-2023-45901) with CVSS v3.1 base score 8.8 (HIGH) and attack vector NETWORK, requiring user interaction (UI:R) and no privileges. Root cause is a CSRF in the ...