VYPR

Dokmee ECM

by Dokmee

CVEs (1)

  • CVE-2023-47261CriDec 14, 2023
    risk 0.64cvss 9.8epss 0.02

    Dokmee ECM 7.4.6 allows remote code execution because the response to a GettingStarted/SaveSQLConnectionAsync /#/gettingstarted request contains a connection string for privileged SQL Server database access, and xp_cmdshell can be enabled.