Doracms
by Doramart
Source repositories
CVEs (9)
| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2026-3794 | Hig | 0.47 | 7.3 | 0.01 | Mar 9, 2026 | A vulnerability was identified in doramart DoraCMS 3.0.x. This issue affects some unknown processing of the file /api/v1/mail/send of the component Email API. Such manipulation leads to improper authentication. It is possible to launch the attack remotely. The exploit is… | ||
| CVE-2026-3795 | Med | 0.41 | 6.3 | 0.01 | Mar 9, 2026 | A security flaw has been discovered in doramart DoraCMS 3.0.x. Impacted is the function createFileBypath of the file /DoraCMS/server/app/router/api/v1.js. Performing a manipulation results in path traversal. The attack can be initiated remotely. The exploit has been released to… | ||
| CVE-2026-25870 | Med | 0.38 | 5.8 | 0.00 | Feb 10, 2026 | DoraCMS version 3.1 and prior contains a server-side request forgery (SSRF) vulnerability in its UEditor remote image fetch functionality. The application accepts user-supplied URLs and performs server-side HTTP or HTTPS requests without sufficient validation or destination… | ||
| CVE-2018-16622 | Med | 0.35 | 5.4 | 0.01 | Sep 6, 2018 | Multiple cross-site scripting (XSS) vulnerabilities in /api/content/addOne in DoraCMS v2.0.3 allow remote attackers to inject arbitrary web script or HTML via the (1) discription or (2) comments field, related to users/userAddContent. | ||
| CVE-2023-51840 | 0.00 | — | 0.01 | Jan 29, 2024 | DoraCMS 2.1.8 is vulnerable to Use of Hard-coded Cryptographic Key. | |||
| CVE-2023-49444 | 0.00 | — | 0.01 | Dec 8, 2023 | An arbitrary file upload vulnerability in DoraCMS v2.1.8 allow attackers to execute arbitrary code via uploading a crafted HTML or image file to the user avatar. | |||
| CVE-2023-49443 | 0.00 | — | 0.01 | Dec 8, 2023 | DoraCMS v2.1.8 was discovered to re-use the same code for verification of valid usernames and passwords. This vulnerability allows attackers to gain access to the application via a bruteforce attack. | |||
| CVE-2022-35147 | 0.00 | — | 0.01 | Aug 17, 2022 | DoraCMS v2.18 and earlier allows attackers to bypass login authentication via a crafted HTTP request. | |||
| CVE-2020-18220 | 0.00 | — | 0.00 | May 20, 2021 | Weak Encoding for Password in DoraCMS v2.1.1 and earlier allows attackers to obtain sensitive information as it does not use a random salt or IV for its AES-CBC encryption, causes password encrypted for users to be susceptible to dictionary attacks. |
- risk 0.47cvss 7.3epss 0.01
A vulnerability was identified in doramart DoraCMS 3.0.x. This issue affects some unknown processing of the file /api/v1/mail/send of the component Email API. Such manipulation leads to improper authentication. It is possible to launch the attack remotely. The exploit is…
- risk 0.41cvss 6.3epss 0.01
A security flaw has been discovered in doramart DoraCMS 3.0.x. Impacted is the function createFileBypath of the file /DoraCMS/server/app/router/api/v1.js. Performing a manipulation results in path traversal. The attack can be initiated remotely. The exploit has been released to…
- risk 0.38cvss 5.8epss 0.00
DoraCMS version 3.1 and prior contains a server-side request forgery (SSRF) vulnerability in its UEditor remote image fetch functionality. The application accepts user-supplied URLs and performs server-side HTTP or HTTPS requests without sufficient validation or destination…
- risk 0.35cvss 5.4epss 0.01
Multiple cross-site scripting (XSS) vulnerabilities in /api/content/addOne in DoraCMS v2.0.3 allow remote attackers to inject arbitrary web script or HTML via the (1) discription or (2) comments field, related to users/userAddContent.
- CVE-2023-51840Jan 29, 2024risk 0.00cvss —epss 0.01
DoraCMS 2.1.8 is vulnerable to Use of Hard-coded Cryptographic Key.
- CVE-2023-49444Dec 8, 2023risk 0.00cvss —epss 0.01
An arbitrary file upload vulnerability in DoraCMS v2.1.8 allow attackers to execute arbitrary code via uploading a crafted HTML or image file to the user avatar.
- CVE-2023-49443Dec 8, 2023risk 0.00cvss —epss 0.01
DoraCMS v2.1.8 was discovered to re-use the same code for verification of valid usernames and passwords. This vulnerability allows attackers to gain access to the application via a bruteforce attack.
- CVE-2022-35147Aug 17, 2022risk 0.00cvss —epss 0.01
DoraCMS v2.18 and earlier allows attackers to bypass login authentication via a crafted HTTP request.
- CVE-2020-18220May 20, 2021risk 0.00cvss —epss 0.00
Weak Encoding for Password in DoraCMS v2.1.1 and earlier allows attackers to obtain sensitive information as it does not use a random salt or IV for its AES-CBC encryption, causes password encrypted for users to be susceptible to dictionary attacks.