Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dreamer vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2023-48914
Dreamer CMS v4.1.3 exists to contain a Cross-Site Request Forgery (CSRF) via the component /admin/archives/add.
Iteachyou Dreamer Cms 4.1.3
5.4
CVSSv3
CVE-2023-49484
Dreamer CMS v4.1.3 exists to contain a cross-site scripting (XSS) vulnerability in the article management department.
Iteachyou Dreamer Cms 4.1.3
8.8
CVSSv3
CVE-2023-50017
Dreamer CMS v4.1.3 exists to contain a Cross-Site Request Forgery (CSRF) via the component /admin/database/backup
Iteachyou Dreamer Cms 4.1.3
NA
CVE-2022-43128
Rejected reason: DO NOT USE THIS CVE RECORD. ConsultIDs: CVE-2022-42245. Reason: This record is a duplicate of CVE-2022-42245. Notes: All CVE users should reference CVE-2022-42245 instead of this record. All references and descriptions in this record have been removed to prevent ...
NA
CVE-2024-25811
An access control issue in Dreamer CMS v4.0.1 allows malicious users to download backup files and leak sensitive information.
NA
CVE-2024-3118
A vulnerability, which was classified as critical, has been found in Dreamer CMS up to 4.1.3. This issue affects some unknown processing of the component Attachment Handler. The manipulation leads to permission issues. The attack may be initiated remotely. The exploit has been di...
NA
CVE-2024-3311
A vulnerability was found in Dreamer CMS up to 4.1.3.0. It has been declared as critical. Affected by this vulnerability is the function ZipUtils.unZipFiles of the file controller/admin/ThemesController.java. The manipulation leads to path traversal. The attack can be launched re...
NA
CVE-2024-2354
A vulnerability, which was classified as problematic, was found in Dreamer CMS 4.1.3. Affected is an unknown function of the file /admin/menu/toEdit. The manipulation of the argument id leads to cross-site request forgery. It is possible to launch the attack remotely. The exploit...
NA
CVE-1999-0470
A weak encryption algorithm is used for passwords in Novell Remote.NLM, allowing them to be easily decrypted.
Novell Netware 4.0
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4