Submit #574923: dreamer_cms <=4.1.3.1 storage-type XSS
| Title | dreamer_cms <=4.1.3.1 storage-type XSS |
|---|---|
| Description | A serious vulnerability was found in dreamer_cms. This vulnerability affects the file upload function of the UploadController.java file. A carefully crafted PDF file upload can lead to stored XSS. |
| Source | ⚠️ https:/ |
| User | fatd0g (UID 84578) |
| Submission | 05/10/2025 08:09 (1 Year ago) |
| Moderation | 05/24/2025 19:45 (14 days later) |
| Status | Duplicate |
| VulDB entry | 248938 [Dreamer CMS 4.1.3 /upload/uploadFile unrestricted upload] |
| Points | 0 |