2 matches found
CVE-2023-45906
creationtimestamp| type| source ---|---|--- 2023-10-17 18:33:07+00:00| seen| https://t.me/cibsecurity/72435...
CVE-2023-45906
Dreamer CMS 4.1.3 is affected by a CSRF in the /admin/user/add functionality. The root cause is a Cross-Site Request Forgery vulnerability that allows unauthorized actions to be performed on behalf of an authenticated user. The NVD entry confirms high impact (C/H/I/A) with CVSS 3.1 base score 8.8...