← Back

Cm3 Acora Cms

cm3_acora_cms

Vendor: Ddsn • 1 CVE

CVEs (1)

CVE
VENDORS
PRODUCTS
UPDATED
PUBLISHED
CVSS
CVE-2025-63314
1Ddsn
1Cm3 Acora Cms
Jan 22, 2026
Jan 12, 2026
N/A· v4
10.0 CRITICAL· v3
N/A· v2
A static password reset token in the password reset function of DDSN Interactive Acora CMS v10.7.1 allows attackers to arbitrarily reset the user password and execute a full account takeover via a replay attack.