Dreamer CMS before version 4.0.1 is vulnerable to Directory Traversal. Background template management allows arbitrary modification of the template file, allowing system sensitive files to be read.
Metrics
Affected Vendors & Products
References
Link | Providers |
---|---|
https://gitee.com/iteachyou/dreamer_cms/issues/I6NOFN |
History
Fri, 11 Oct 2024 21:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2023-11-29T00:00:00
Updated: 2024-10-10T20:21:47.970Z
Reserved: 2023-10-30T00:00:00
Link: CVE-2023-46886
Vulnrichment
Updated: 2024-08-02T20:53:21.951Z
NVD
Status : Modified
Published: 2023-11-29T05:15:07.863
Modified: 2024-11-21T08:29:27.850
Link: CVE-2023-46886
Redhat
No data.