2 matches found
CVE-2023-48060
Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery CSRF via the component /admin/task/add...
CVE-2023-48060
Dreamer CMS v4.1.3 contains a Cross-Site Request Forgery (CSRF) in the component "/admin/task/add". The root cause is a CSRF flaw that can enable unauthorized actions on behalf of a user; CVSSv3.1: 8.8 (HIGH) with network attack vector, low attack complexity, no privileges, user interaction requi...