exploitDog

GHSA-v46f-6x32-qw44

Опубликовано: 29 нояб. 2023

Источник: github

Github: Не прошло ревью

CVSS3: 7.5

Описание

In Dreamer CMS before 4.0.1, the backend attachment management office has an Arbitrary File Download vulnerability.

In Dreamer CMS before 4.0.1, the backend attachment management office has an Arbitrary File Download vulnerability.

Ссылки

EPSS

Процентиль: 38%

0.00169

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-494

Связанные уязвимости

CVE-2023-46887

CVSS3: 7.5

nvd

около 2 лет назад

In Dreamer CMS before 4.0.1, the backend attachment management office has an Arbitrary File Download vulnerability.

EPSS

Процентиль: 38%

0.00169

Низкий

7.5 High

CVSS3

CVE ID

Дефекты

CWE-494