Dreamer CMS v4.1.3 exists to contain an arbitrary file read vulnerability via the component /admin/TemplateController.java.
dreamer cms project dreamer cms 4.1.3