Vulnerabilities > Dreamer CMS Project > Dreamer CMS > 4.0.1
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-29 | CVE-2023-46886 | Path Traversal vulnerability in Dreamer CMS Project Dreamer CMS Dreamer CMS before version 4.0.1 is vulnerable to Directory Traversal. | 9.1 |
| 2023-11-29 | CVE-2023-46887 | Download of Code Without Integrity Check vulnerability in Dreamer CMS Project Dreamer CMS In Dreamer CMS before 4.0.1, the backend attachment management office has an Arbitrary File Download vulnerability. | 7.5 |
| 2023-09-03 | CVE-2023-4743 | Unspecified vulnerability in Dreamer CMS Project Dreamer CMS A vulnerability was found in Dreamer CMS up to 4.1.3. | 4.8 |
| 2023-05-02 | CVE-2023-2473 | Algorithmic Complexity vulnerability in Dreamer CMS Project Dreamer CMS A vulnerability was found in Dreamer CMS up to 4.1.3. | 4.3 |
| 2023-03-16 | CVE-2023-27084 | Incorrect Permission Assignment for Critical Resource vulnerability in Dreamer CMS Project Dreamer CMS 4.0.1 Permissions vulnerability found in isoftforce Dreamer CMS v.4.0.1 allows local attackers to obtain sensitive information via the AttachmentController parameter. | 5.3 |
| 2023-01-26 | CVE-2023-0513 | Unspecified vulnerability in Dreamer CMS Project Dreamer CMS A vulnerability has been found in isoftforce Dreamer CMS up to 4.0.1 and classified as problematic. | 5.4 |