iteachyou-wjn/dreamer_cms

Unavailable

This project is no longer available (or publicly accessible) from GitHub

Releases4

Frequency1 year 4 months

Last Release about 1 year ago

Stars105

Dreamer CMS 梦想家内容发布系统采用流行的SpringBoot搭建，支持静态化、标签化建站。不需要专业的后台开发技能，会HTML就能建站，上手超简单；只需使用系统提供的标签就能轻松建设网站。全面支持各类表单字段，真正实现“0”代码建网站。

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2023-29774 ↗	Apr 18, 2023Tuesday, 18 April 2023, 15:15	5.4 MEDIUM	—
Dreamer CMS 3.0.1 is vulnerable to stored Cross Site Scripting (XSS).
CVE-2023-1746 ↗	Mar 30, 2023Thursday, 30 March 2023, 23:15	3.5 LOW	4 MEDIUM
A vulnerability, which was classified as problematic, was found in Dreamer CMS up to 3.5.0. Affected is an unknown function of the component File Upload Handler. The manipulation leads to cross site scripting. It is possible to launch the attack remotely. VDB-224634 is the identifier assigned to this vulnerability.
CVE-2023-27084 ↗	Mar 16, 2023Thursday, 16 March 2023, 02:15	5.3 MEDIUM	—
Permissions vulnerability found in isoftforce Dreamer CMS v.4.0.1 allows local attackers to obtain sensitive information via the AttachmentController parameter.