How severe is CVE-2023-27084?

CVE-2023-27084 has a CVSS v3 score of 5.3 (MEDIUM).

CVE-2023-27084

Name: dreamer_cms
Author: iteachyou

5.3MEDIUM

Permissions vulnerability found in isoftforce Dreamer CMS v.4.0.1 allows local attackers to obtain sensitive information via the AttachmentController parameter.

Published: 3/16/2023Updated: 4/4/2025

Description

Permissions vulnerability found in isoftforce Dreamer CMS v.4.0.1 allows local attackers to obtain sensitive information via the AttachmentController parameter.

AI AnalysisPowered by AI

Affected Products

iteachyoudreamer_cms

4.0.1

References

https://gitee.com/isoftforce/dreamer_cms/issues/I6GCUN
Broken Link
https://github.com/iteachyou-wjn/dreamer_cms/issues/9
ExploitIssue TrackingThird Party Advisory
https://gitee.com/isoftforce/dreamer_cms/issues/I6GCUN
Broken Link
https://github.com/iteachyou-wjn/dreamer_cms/issues/9
ExploitIssue TrackingThird Party Advisory