L1M1T-HACK/cms

L1M1T-HACK/cms

Unavailable

This project is no longer available (or publicly accessible) from GitHub

Releases0

Stars1

Log in to subscribe

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2023-48058 ↗	Nov 13, 2023Monday, 13 November 2023, 16:15	8.8 HIGH	—
Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/task/run
CVE-2023-48060 ↗	Nov 13, 2023Monday, 13 November 2023, 16:15	8.8 HIGH	—
Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/task/add
CVE-2023-48063 ↗	Nov 13, 2023Monday, 13 November 2023, 16:15	4.3 MEDIUM	—
An issue was discovered in dreamer_cms 4.1.3. There is a CSRF vulnerability that can delete a theme project via /admin/category/delete.
CVE-2023-48068 ↗	Nov 13, 2023Monday, 13 November 2023, 16:15	5.4 MEDIUM	—
DedeCMS v6.2 was discovered to contain a Cross-site Scripting (XSS) vulnerability via spec_add.php.