Vulnerabilities > Iteachyou > Dreamer CMS > 4.1.3

DATE CVE VULNERABILITY TITLE RISK
2023-11-30 CVE-2023-48914 Cross-Site Request Forgery (CSRF) vulnerability in Iteachyou Dreamer CMS 4.1.3
Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/archives/add.
network
low complexity
iteachyou CWE-352
8.8
8.8
2023-11-18 CVE-2023-48017 Cross-Site Request Forgery (CSRF) vulnerability in Iteachyou Dreamer CMS 4.1.3
Dreamer_cms 4.1.3 is vulnerable to Cross Site Request Forgery (CSRF) via Add permissions to CSRF in Permission Management.
network
low complexity
iteachyou CWE-352
8.8
8.8
2023-11-14 CVE-2023-48020 Cross-Site Request Forgery (CSRF) vulnerability in Iteachyou Dreamer CMS 4.1.3
Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/task/changeStatus.
network
low complexity
iteachyou CWE-352
8.8
8.8
2023-11-14 CVE-2023-48021 Cross-Site Request Forgery (CSRF) vulnerability in Iteachyou Dreamer CMS 4.1.3
Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/task/update.
network
low complexity
iteachyou CWE-352
8.8
8.8
2023-11-13 CVE-2023-48058 Cross-Site Request Forgery (CSRF) vulnerability in Iteachyou Dreamer CMS 4.1.3
Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/task/run
network
low complexity
iteachyou CWE-352
8.8
8.8
2023-11-13 CVE-2023-48060 Cross-Site Request Forgery (CSRF) vulnerability in Iteachyou Dreamer CMS 4.1.3
Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/task/add
network
low complexity
iteachyou CWE-352
8.8
8.8
2023-11-13 CVE-2023-48063 Cross-Site Request Forgery (CSRF) vulnerability in Iteachyou Dreamer CMS 4.1.3
An issue was discovered in dreamer_cms 4.1.3.
network
low complexity
iteachyou CWE-352
4.3
4.3
2023-10-17 CVE-2023-45901 Cross-Site Request Forgery (CSRF) vulnerability in Iteachyou Dreamer CMS 4.1.3
Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin\/category\/add.
network
low complexity
iteachyou CWE-352
8.8
8.8
2023-10-17 CVE-2023-45902 Cross-Site Request Forgery (CSRF) vulnerability in Iteachyou Dreamer CMS 4.1.3
Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/attachment/delete.
network
low complexity
iteachyou CWE-352
8.8
8.8
2023-10-17 CVE-2023-45903 Cross-Site Request Forgery (CSRF) vulnerability in Iteachyou Dreamer CMS 4.1.3
Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/label/delete.
network
low complexity
iteachyou CWE-352
8.8
8.8