top of page
perceptive_background_267k.jpg

A vulnerability was identified in doramart DoraCMS 3.0.x. This issue affects some unknown processing of the file /api/v1/mail/send of the component Email API. S…

Published:

8 March 2026 at 23:00:00

Alert date:

9 March 2026 at 14:06:07

Source:

nvd.nist.gov

Click to open the original link from this advisory

Web Technologies, Enterprise Applications

A vulnerability was identified in doramart DoraCMS 3.0.x affecting the Email API component. The issue involves improper authentication in the /api/v1/mail/send endpoint that can be exploited remotely. A public exploit is available for this vulnerability. The vendor was contacted about the disclosure but did not respond. This represents an authentication bypass vulnerability that could allow unauthorized access to email functionality.

Technical details

Mitigation steps:

Affected products:

doramart DoraCMS

Related links:

https://nvd.nist.gov/vuln/detail/CVE-2026-3794
https://vuldb.com/?ctiid.349761
https://vuldb.com/?id.349761
https://vuldb.com/?submit.768239

Related CVE's:

Related threat actors:

IOC's:

This article was created with the assistance of AI technology by Perceptive.

About us

© 2025 by Perceptive Security. All rights reserved.

email: info@perceptivesecurity.com

Disclaimer: Deze website toont informatie afkomstig van externe bronnen. Perceptive aanvaardt geen verantwoordelijkheid voor de inhoud, juistheid of volledigheid van deze informatie.

bottom of page