Vulnerabilities > Iteachyou > Dreamer CMS > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-11-14 | CVE-2023-48021 | Cross-Site Request Forgery (CSRF) vulnerability in Iteachyou Dreamer CMS 4.1.3 Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/task/update. | 8.8 |
| 2023-11-13 | CVE-2023-48058 | Cross-Site Request Forgery (CSRF) vulnerability in Iteachyou Dreamer CMS 4.1.3 Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/task/run | 8.8 |
| 2023-11-13 | CVE-2023-48060 | Cross-Site Request Forgery (CSRF) vulnerability in Iteachyou Dreamer CMS 4.1.3 Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/task/add | 8.8 |
| 2023-10-17 | CVE-2023-45901 | Cross-Site Request Forgery (CSRF) vulnerability in Iteachyou Dreamer CMS 4.1.3 Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin\/category\/add. | 8.8 |
| 2023-10-17 | CVE-2023-45902 | Cross-Site Request Forgery (CSRF) vulnerability in Iteachyou Dreamer CMS 4.1.3 Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/attachment/delete. | 8.8 |
| 2023-10-17 | CVE-2023-45903 | Cross-Site Request Forgery (CSRF) vulnerability in Iteachyou Dreamer CMS 4.1.3 Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/label/delete. | 8.8 |
| 2023-10-17 | CVE-2023-45904 | Cross-Site Request Forgery (CSRF) vulnerability in Iteachyou Dreamer CMS 4.1.3 Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /variable/update. | 8.8 |
| 2023-10-17 | CVE-2023-45905 | Cross-Site Request Forgery (CSRF) vulnerability in Iteachyou Dreamer CMS 4.1.3 Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/variable/add. | 8.8 |
| 2023-10-17 | CVE-2023-45906 | Cross-Site Request Forgery (CSRF) vulnerability in Iteachyou Dreamer CMS 4.1.3 Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/user/add. | 8.8 |
| 2023-10-17 | CVE-2023-45907 | Cross-Site Request Forgery (CSRF) vulnerability in Iteachyou Dreamer CMS 4.1.3 Dreamer CMS v4.1.3 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/variable/delete. | 8.8 |