Iteachyou: >> Dreamer Cms >> 4.1.3 Security Vulnerabilities
Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/archives/edit.
CVSS Score
8.8
EPSS Score
0.002
Published
2023-11-30
Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/archives/delete.
CVSS Score
8.8
EPSS Score
0.002
Published
2023-11-30
Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/archives/add.
CVSS Score
8.8
EPSS Score
0.002
Published
2023-11-30
Dreamer_cms 4.1.3 is vulnerable to Cross Site Request Forgery (CSRF) via Add permissions to CSRF in Permission Management.
CVSS Score
8.8
EPSS Score
0.001
Published
2023-11-18
Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/task/changeStatus.
CVSS Score
8.8
EPSS Score
0.002
Published
2023-11-14
Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/task/update.
CVSS Score
8.8
EPSS Score
0.002
Published
2023-11-14
Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/task/run
CVSS Score
8.8
EPSS Score
0.001
Published
2023-11-13
Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/task/add
CVSS Score
8.8
EPSS Score
0.001
Published
2023-11-13
An issue was discovered in dreamer_cms 4.1.3. There is a CSRF vulnerability that can delete a theme project via /admin/category/delete.
CVSS Score
4.3
EPSS Score
0.001
Published
2023-11-13
Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin\/category\/add.
CVSS Score
8.8
EPSS Score
0.001
Published
2023-10-17