High severity8.8NVD Advisory· Published Sep 25, 2023· Updated Jun 17, 2026
CVE-2023-43382
CVE-2023-43382
Description
Directory Traversal vulnerability in itechyou dreamer CMS v.4.1.3 allows a remote attacker to execute arbitrary code via the themePath in the uploaded template function.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
2- itechyou/dreamer CMSdescription
- Range: 4.1.3
Patches
Vulnerability mechanics
References
3- aecous.github.io/2023/09/17/Text/nvdThird Party Advisory
- gist.github.com/Aecous/7c6524859d624c00f4a975ecd5a743a7nvdThird Party Advisory
- gitee.com/iteachyou/dreamer_cms/issues/I821AInvdIssue Tracking
News mentions
0No linked articles in our index yet.