CNNVD-202509-1810 Information

CNNVD ID

CNNVD-202509-1810

Related CVE

CVE-2025-10320

• CNNVD Published: 2025-09-12

Description (Chinese)

Dreamer CMS是中国王俊南（Junnan Wang）个人开发者的一个梦想家内容管理系统。 Dreamer CMS 4.1.3.2及之前版本存在安全漏洞，该漏洞源于文件/admin/user/updatePwd处理不当，可能导致弱密码要求。

Description (English)

Dreamer CMS is a dreamer content management system for the personal developer of King Junnan Wang. There is a security loophole in Dreamer CMS 4.1.3.2 and earlier versions, which stems from inadequate handling of the document/admin/user/updatePwd, which may lead to weak password requirements.

Hazard Level

Critical

Vulnerability Type

其他

Affected Vendor

个人开发者

Published

2025-09-12

Last Modified

2026-02-24

References

https://vuldb.com/?ctiid.323746 https://vuldb.com/?id.323746 https://vuldb.com/?submit.643393 https://www.cnblogs.com/aibot/p/19063320 https://access.redhat.com/security/cve/cve-2025-10320