3 matches found
CVE-2025-40659
An Insecure Direct Object Reference IDOR vulnerability has been found in DM Corporative CMS. This vulnerability allows an attacker to access the private area setting the option parameter equal to 0, 1 or 2 in /administer/selectionnode/framesSelectionNetworks.asp...
CVE-2025-40659
creationtimestamp| type| source ---|---|--- 2025-06-10 10:33:35+00:00| seen| https://t.me/DarkWebInformerCVEAlerts/17861 2025-06-10 13:33:26+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3lrayyv5lbl23...
CVE-2025-40659
DM Corporative CMS is affected by an Insecure Direct Object Reference (IDOR) in the endpoint /administer/selectionnode/framesSelectionNetworks.asp, caused by insufficient access control when the option parameter is set to 0, 1, or 2. The vulnerability lets an attacker access the private area data...