Approved changes feed: RSS · Atom

cpe:2.3:a:n/a:dreamer_cms:*:*:*:*:*:*:*:*

part: a version: * update: *

VendorN/A (22f567d3-1203-528c-8f0e-3eb9c2f6ca78)
ProductDreamer Cms (a34bc5f4-7e94-5f64-8ac4-1cad3894b484)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from gcve-enriched-dumps CVE data

PURL mappings

PURLSourceLast updated
No PURL mappings for this CPE yet.

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2023-2473 vulnerable 2026-06-08 06:02:42.356901 Dreamer CMS Password Hash Calculation UserController.java updatePwd algorithmic complexity
MEDIUM (4.3)
A vulnerability was found in Dreamer CMS up to 4.1.3. It has been declared as problematic. This vulnerability affects the function updatePwd of the file UserController.java of the component Password Hash Calculation. The manipulation leads to inefficient algorithmic complexity. The attack can be initiated remotely. It is recommended to upgrade the affected component. The identifier of this vulnerability is VDB-227860.
Published: 2023-05-02T12:00:09.669Z
Updated: 2025-01-30T14:16:41.817Z
Reference links
Imported from gcve-enriched-dumps CVE data
CVE:CVE-2023-1746 vulnerable 2026-06-08 05:52:36.886638 Dreamer CMS File Upload cross site scripting
LOW (3.5)
A vulnerability, which was classified as problematic, was found in Dreamer CMS up to 3.5.0. Affected is an unknown function of the component File Upload Handler. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. VDB-224634 is the identifier assigned to this vulnerability.
Published: 2023-03-30T23:00:06.477Z
Updated: 2024-11-22T21:49:38.257Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.