Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dreamer vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-48021
Dreamer CMS v4.1.3 exists to contain a Cross-Site Request Forgery (CSRF) vulnerability via /admin/task/update.
Iteachyou Dreamer Cms 4.1.3
NA
CVE-2023-49484
Dreamer CMS v4.1.3 exists to contain a cross-site scripting (XSS) vulnerability in the article management department.
Iteachyou Dreamer Cms 4.1.3
NA
CVE-2023-43382
Directory Traversal vulnerability in itechyou dreamer CMS v.4.1.3 allows a remote malicious user to execute arbitrary code via the themePath in the uploaded template function.
Iteachyou Dreamer Cms 4.1.3
NA
CVE-2022-43128
Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2022-42245. Reason: This record is a duplicate of CVE-2022-42245. Notes: All CVE users should reference CVE-2022-42245 instead of this record. All references and descriptions in this record have been removed to prevent ...
NA
CVE-2024-25811
An access control issue in Dreamer CMS v4.0.1 allows malicious users to download backup files and leak sensitive information.
NA
CVE-2024-3118
A vulnerability, which was classified as critical, has been found in Dreamer CMS up to 4.1.3. This issue affects some unknown processing of the component Attachment Handler. The manipulation leads to permission issues. The attack may be initiated remotely. The exploit has been di...
NA
CVE-2024-3311
A vulnerability was found in Dreamer CMS up to 4.1.3.0. It has been declared as critical. Affected by this vulnerability is the function ZipUtils.unZipFiles of the file controller/admin/ThemesController.java. The manipulation leads to path traversal. The attack can be launched re...
NA
CVE-2024-2354
A vulnerability, which was classified as problematic, was found in Dreamer CMS 4.1.3. Affected is an unknown function of the file /admin/menu/toEdit. The manipulation of the argument id leads to cross-site request forgery. It is possible to launch the attack remotely. The exploit...
505
VMScore
CVE-1999-0470
A weak encryption algorithm is used for passwords in Novell Remote.NLM, allowing them to be easily decrypted.
Novell Netware 4.0
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3080
log injection
CVE-2024-6041
CVE-2024-37661
XML external entity
CVE-2024-0845
privilege escalation
CVE-2023-37057
CVE-2024-27801
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4