Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dreamer vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv3
CVE-2023-48063
An issue exists in dreamer_cms 4.1.3. There is a CSRF vulnerability that can delete a theme project via /admin/category/delete.
Dreamer Cms Project Dreamer Cms 4.1.3
8.8
CVSSv3
CVE-2023-45902
Dreamer CMS v4.1.3 exists to contain a Cross-Site Request Forgery (CSRF) via the component /admin/attachment/delete.
Dreamer Cms Project Dreamer Cms 4.1.3
8.8
CVSSv3
CVE-2023-45903
Dreamer CMS v4.1.3 exists to contain a Cross-Site Request Forgery (CSRF) via the component /admin/label/delete.
Dreamer Cms Project Dreamer Cms 4.1.3
8.8
CVSSv3
CVE-2023-45904
Dreamer CMS v4.1.3 exists to contain a Cross-Site Request Forgery (CSRF) via the component /variable/update.
Dreamer Cms Project Dreamer Cms 4.1.3
8.8
CVSSv3
CVE-2023-45905
Dreamer CMS v4.1.3 exists to contain a Cross-Site Request Forgery (CSRF) via the component /admin/variable/add.
Dreamer Cms Project Dreamer Cms 4.1.3
8.8
CVSSv3
CVE-2023-45906
Dreamer CMS v4.1.3 exists to contain a Cross-Site Request Forgery (CSRF) via the component /admin/user/add.
Dreamer Cms Project Dreamer Cms 4.1.3
8.8
CVSSv3
CVE-2023-45907
Dreamer CMS v4.1.3 exists to contain a Cross-Site Request Forgery (CSRF) via the component /admin/variable/delete.
Dreamer Cms Project Dreamer Cms 4.1.3
8.8
CVSSv3
CVE-2023-45901
Dreamer CMS v4.1.3 exists to contain a Cross-Site Request Forgery (CSRF) via the component /admin\/category\/add.
Dreamer Cms Project Dreamer Cms 4.1.3
5.3
CVSSv3
CVE-2023-27084
Permissions vulnerability found in isoftforce Dreamer CMS v.4.0.1 allows local malicious users to obtain sensitive information via the AttachmentController parameter.
Dreamer Cms Project Dreamer Cms 4.0.1
7.5
CVSSv3
CVE-2023-43856
Dreamer CMS v4.1.3 exists to contain an arbitrary file read vulnerability via the component /admin/TemplateController.java.
Dreamer Cms Project Dreamer Cms 4.1.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
NEXT »