CVE-2026-3794

HIGH

doramart DoraCMS 3.0.x - Auth Bypass

Title source: llm
STIX 2.1

Exploitation Summary

EIP tracks 1 public exploit for CVE-2026-3794. PoCs published by LTX-GOD.

AI-analyzed exploit summary The repository contains a functional exploit for an unauthorized email sending vulnerability in DoraCMS 3.0.0. The PoC demonstrates how an attacker can send arbitrary emails without authentication by leveraging an exposed API endpoint.

Description

A vulnerability was identified in doramart DoraCMS 3.0.x. This issue affects some unknown processing of the file /api/v1/mail/send of the component Email API. Such manipulation leads to improper authentication. It is possible to launch the attack remotely. The exploit is publicly available and might be used. The vendor was contacted early about this disclosure but did not respond in any way.

Exploits (1)

github WORKING POC 2 stars
by LTX-GOD · poc
https://github.com/LTX-GOD/Mycve/tree/main/doracms-CVE-2026-3794.md

The repository contains a functional exploit for an unauthorized email sending vulnerability in DoraCMS 3.0.0. The PoC demonstrates how an attacker can send arbitrary emails without authentication by leveraging an exposed API endpoint.

Classification
Working Poc 95%
Attack Type
Other
Complexity
Trivial
Reliability
Reliable
Target: DoraCMS 3.0.0
No auth needed
Prerequisites: Access to the target DoraCMS instance
devstral-2 · analyzed Mar 11, 2026 Full analysis →

References (3)

Core 3
Core References
Permissions Required, VDB Entry vdb-entry technical-description
https://vuldb.com/?id.349761
Permissions Required, VDB Entry signature permissions-required
https://vuldb.com/?ctiid.349761
Permissions Required, VDB Entry third-party-advisory
https://vuldb.com/?submit.768239

Scores

CVSS v3 7.3
EPSS 0.0065
EPSS Percentile 46.2%
Attack Vector NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L

CISA SSVC

Vulnrichment
Exploitation none
Automatable no
Technical Impact partial

Details

CWE
CWE-287
Status published
Products (2)
doramart/DoraCMS 3.0.*
html-js/doracms
Published Mar 09, 2026
Tracked Since Mar 09, 2026