Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/user/add.
References
Link | Resource |
---|---|
https://github.com/moonsabc123/dreamer_cms/blob/main/There%20is%20a%20csrf%20in%20the%20user%20added%20function.md | Exploit Third Party Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2023-10-17T00:00:00
Updated: 2023-10-17T13:12:00.090978
Reserved: 2023-10-16T00:00:00
Link: CVE-2023-45906
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-10-17T14:15:10.307
Modified: 2023-10-18T17:56:08.690
Link: CVE-2023-45906
JSON object: View
Redhat Information
No data.
CWE