Vulnerabilities > Iteachyou > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-09-27 | CVE-2023-43856 | Files or Directories Accessible to External Parties vulnerability in Iteachyou Dreamer CMS 4.1.3 Dreamer CMS v4.1.3 was discovered to contain an arbitrary file read vulnerability via the component /admin/TemplateController.java. | 7.5 |
| 2023-09-25 | CVE-2023-43382 | Path Traversal vulnerability in Iteachyou Dreamer CMS 4.1.3 Directory Traversal vulnerability in itechyou dreamer CMS v.4.1.3 allows a remote attacker to execute arbitrary code via the themePath in the uploaded template function. | 8.8 |