Vulnerabilities > Dreamer CMS Project > Dreamer CMS > Critical

DATE CVE VULNERABILITY TITLE RISK
2023-11-29 CVE-2023-46886 Path Traversal vulnerability in Dreamer CMS Project Dreamer CMS
Dreamer CMS before version 4.0.1 is vulnerable to Directory Traversal.
network
low complexity
dreamer-cms-project CWE-22
critical
 9.1
9.1
2022-11-17 CVE-2022-42245 SQL Injection vulnerability in Dreamer CMS Project Dreamer CMS 4.0.01
Dreamer CMS 4.0.01 is vulnerable to SQL Injection.
network
low complexity
dreamer-cms-project CWE-89
critical
 9.8
9.8