Dreamer Cms Security Vulnerabilities and Issues — Dreamer Cms CVE List

Lucene search

IteachyouDreamer Cms

3 matches found

cve•added 2023/09/27 3:19 p.m.•81 views

CVE-2023-43856

Dreamer CMS v4.1.3 was discovered to contain an arbitrary file read vulnerability via the component /admin/TemplateController.java.

7.5CVSS7.5AI score0.00158EPSS

cve•added 2023/05/02 1:15 p.m.•32 views

CVE-2023-2473

A vulnerability was found in Dreamer CMS up to 4.1.3. It has been declared as problematic. This vulnerability affects the function updatePwd of the file UserController.java of the component Password Hash Calculation. The manipulation leads to inefficient algorithmic complexity. The attack can be in...

7.5CVSS5.8AI score0.00047EPSS

cve•added 2023/11/29 5:15 a.m.•23 views

CVE-2023-46887

In Dreamer CMS before 4.0.1, the backend attachment management office has an Arbitrary File Download vulnerability.

7.5CVSS7.5AI score0.00169EPSS