Vulnerabilities > Iteachyou > Dreamer CMS

DATE CVE VULNERABILITY TITLE RISK
2025-02-21 CVE-2025-1548 Code Injection vulnerability in Iteachyou Dreamer CMS 4.1.3
A vulnerability was found in iteachyou Dreamer CMS 4.1.3.
network
low complexity
iteachyou CWE-94
4.6
4.6
2025-02-21 CVE-2025-1543 Path Traversal vulnerability in Iteachyou Dreamer CMS 4.1.3
A vulnerability, which was classified as problematic, has been found in iteachyou Dreamer CMS 4.1.3.
network
low complexity
iteachyou CWE-22
4.3
4.3
2024-04-04 CVE-2024-3311 Path Traversal vulnerability in Iteachyou Dreamer CMS
A vulnerability was found in Dreamer CMS up to 4.1.3.0.
network
low complexity
iteachyou CWE-22
8.8
8.8
2024-03-31 CVE-2024-3118 Unspecified vulnerability in Iteachyou Dreamer CMS
A vulnerability, which was classified as critical, has been found in Dreamer CMS up to 4.1.3.
network
low complexity
iteachyou
8.8
8.8
2024-03-10 CVE-2024-2354 Unspecified vulnerability in Iteachyou Dreamer CMS 4.1.3
A vulnerability, which was classified as problematic, was found in Dreamer CMS 4.1.3.
network
low complexity
iteachyou
6.5
6.5
2023-12-24 CVE-2023-7091 Unspecified vulnerability in Iteachyou Dreamer CMS 4.1.3
A vulnerability was found in Dreamer CMS 4.1.3.
network
low complexity
iteachyou
8.8
8.8
2023-12-14 CVE-2023-50017 Cross-Site Request Forgery (CSRF) vulnerability in Iteachyou Dreamer CMS 4.1.3
Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/database/backup
network
low complexity
iteachyou CWE-352
8.8
8.8
2023-12-08 CVE-2023-49484 Cross-site Scripting vulnerability in Iteachyou Dreamer CMS 4.1.3
Dreamer CMS v4.1.3 was discovered to contain a cross-site scripting (XSS) vulnerability in the article management department.
network
low complexity
iteachyou CWE-79
5.4
5.4
2023-11-30 CVE-2023-48912 Cross-Site Request Forgery (CSRF) vulnerability in Iteachyou Dreamer CMS 4.1.3
Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/archives/edit.
network
low complexity
iteachyou CWE-352
8.8
8.8
2023-11-30 CVE-2023-48913 Cross-Site Request Forgery (CSRF) vulnerability in Iteachyou Dreamer CMS 4.1.3
Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/archives/delete.
network
low complexity
iteachyou CWE-352
8.8
8.8