Vulnerabilities > Iteachyou > Dreamer CMS

DATE CVE VULNERABILITY TITLE RISK
2023-09-03 CVE-2023-4743 Files or Directories Accessible to External Parties vulnerability in Iteachyou Dreamer CMS
A vulnerability was found in Dreamer CMS up to 4.1.3.
network
high complexity
iteachyou CWE-552
4.8
4.8
2023-05-02 CVE-2023-2473 Algorithmic Complexity vulnerability in Iteachyou Dreamer CMS
A vulnerability was found in Dreamer CMS up to 4.1.3.
network
low complexity
iteachyou CWE-407
4.3
4.3
2023-04-18 CVE-2023-29774 Cross-site Scripting vulnerability in Iteachyou Dreamer CMS 3.0.1
Dreamer CMS 3.0.1 is vulnerable to stored Cross Site Scripting (XSS).
network
low complexity
iteachyou CWE-79
5.4
5.4
2023-03-30 CVE-2023-1746 Cross-site Scripting vulnerability in Iteachyou Dreamer CMS
A vulnerability, which was classified as problematic, was found in Dreamer CMS up to 3.5.0.
network
low complexity
iteachyou CWE-79
5.4
5.4
2023-03-16 CVE-2023-27084 Incorrect Permission Assignment for Critical Resource vulnerability in Iteachyou Dreamer CMS 4.0.1
Permissions vulnerability found in isoftforce Dreamer CMS v.4.0.1 allows local attackers to obtain sensitive information via the AttachmentController parameter.
local
high complexity
iteachyou CWE-732
5.3
5.3
2023-01-26 CVE-2023-0513 Cross-site Scripting vulnerability in Iteachyou Dreamer CMS
A vulnerability has been found in isoftforce Dreamer CMS up to 4.0.1 and classified as problematic.
network
low complexity
iteachyou CWE-79
5.4
5.4
2022-03-24 CVE-2021-43084 SQL Injection vulnerability in Iteachyou Dreamer CMS 4.0.0
An SQL Injection vulnerability exists in Dreamer CMS 4.0.0 via the tableName parameter.
network
low complexity
iteachyou CWE-89
critical
 9.8
9.8