We use these services and cookies to improve your user experience. You may opt out if you wish, however, this may limit some features on this site.

Please see our statement on Data Privacy.

Crisp.chat (Helpdesk and Chat)

Ok

THREATINT
PUBLISHED

CVE-2023-45902



Assignermitre
Reserved2023-10-16
Published2023-10-17
Updated2024-09-13

Description

Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/attachment/delete.

References

https://github.com/moonsabc123/dreamer_cms/blob/main/There%20is%20a%20csrf%20in%20the%20attachment%20management%20deletion%20function.md

cve.org CVE-2023-45902

nvd.nist.gov CVE-2023-45902

Download JSON

Share this page
https://cve.threatint.com/CVE/CVE-2023-45902
Subscribe to our newsletter to learn more about our work.