All 7 CVE vulnerabilities found in Dreamer CMS, with AI-generated Chinese analysis, references, and POCs.
Vendor: isoftforce
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-10320 | iteachyou Dreamer CMS updatePwd weak password CWE-521 | 3.1 | Low | 2025-09-12 |
| CVE-2025-3977 | iteachyou Dreamer CMS Attachment download improper authorization CWE-285 | 4.3 | Medium | 2025-04-27 |
| CVE-2025-1548 | iteachyou Dreamer CMS edit cross site scripting CWE-79 | 3.5 | Low | 2025-02-21 |
| CVE-2025-1543 | iteachyou Dreamer CMS ueditor-1.4.3.3 path traversal CWE-22 | 4.3 | Medium | 2025-02-21 |
| CVE-2023-2473 | Dreamer CMS Password Hash Calculation UserController.java updatePwd algorithmic complexity CWE-407 | 4.3 | Medium | 2023-05-02 |
| CVE-2023-1746 | Dreamer CMS File Upload cross site scripting CWE-79 | 3.5 | Low | 2023-03-30 |
| CVE-2023-0513 | isoftforce Dreamer CMS cross site scripting CWE-79 | 3.5 | Low | 2023-01-26 |
All 7 known CVE vulnerabilities affecting Dreamer CMS with full Chinese analysis, references, and POCs where available.