CVE-2023-0513
Summary
| CVE | CVE-2023-0513 |
|---|---|
| State | PUBLIC |
| Assigner | [email protected] |
| Source Priority | CVE Program / NVD first with legacy fallback |
| Published | 2023-01-26 21:18:00 UTC |
| Updated | 2023-11-07 04:00:00 UTC |
| Description | A vulnerability has been found in isoftforce Dreamer CMS up to 4.0.1 and classified as problematic. This vulnerability affects unknown code. The manipulation leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. Upgrading to version 4.1.3 is able to address this issue. It is recommended to upgrade the affected component. VDB-219334 is the identifier assigned to this vulnerability. |
Risk And Classification
Problem Types: CWE-79
NVD Known Affected Configurations (CPE 2.3)
| Type | Vendor | Product | Version | Update | Edition | Language |
|---|---|---|---|---|---|---|
| Application | Dreamer Cms Project | Dreamer Cms | All | All | All | All |
References
| Reference | Source | Link | Tags |
|---|---|---|---|
| 存在存储型xss及未授权访问漏洞 · Issue #I68UYM · 王俊南/Dreamer CMS(梦想家CMS内容管理系统) - Gitee.com | MISC | gitee.com | |
| Dreamer CMS(梦想家CMS内容管理系统): Dreamer CMS 梦想家内容发布系统采用流行的SpringBoot搭建,支持静态化、标签化建站。不需要专业的后台开发技能,会HTML就能建站,上手超简单;只需使用系统提供的标签就能轻松建设网站。全面支持各类表单字段,真正实现“0”代码建网站。 - Gitee.com | MISC | gitee.com | |
| vuldb.com | MISC | vuldb.com | |
| vuldb.com | MISC | vuldb.com | |
| CVE Program record | CVE.ORG | www.cve.org | canonical |
| NVD vulnerability detail | NVD | nvd.nist.gov | canonical, analysis |
No vendor comments have been submitted for this CVE.
There are currently no legacy QID mappings associated with this CVE.