iteachyou Dreamer CMS edit cross site scripting
Description
A vulnerability was found in iteachyou Dreamer CMS 4.1.3. It has been declared as problematic. This vulnerability affects unknown code of the file /admin/archives/edit. The manipulation of the argument editorValue/answer/content leads to cross site scripting. The attack can be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Dreamer CMS 4.1.3 has a Server-Side Request Forgery (SSRF) vulnerability in the article editor image upload, allowing authenticated attackers to force the server to make unauthorized outbound requests.
Vulnerability
Dreamer CMS version 4.1.3 is vulnerable to a Server-Side Request Forgery (SSRF) in the article editor's image upload functionality. The endpoint /admin/archives/edit allows authenticated users to embed images with arbitrary src URLs, enabling the server to make requests to external targets. The vulnerability is classified as CWE-918. [1]
Exploitation
An attacker with authentication to the backend can craft a POST request to /admin/archives/edit containing an ` tag with a src` pointing to an attacker-controlled server. The server will fetch the resource from the provided URL, effectively making an outbound request. The attacker must have access to the admin panel and be able to edit articles. [1]
Impact
Successful exploitation allows the attacker to force the server to make unauthorized requests to internal or external systems, potentially exposing sensitive information from internal services or enabling further attacks such as internal network scanning. The attack does not directly compromise the server itself but can lead to information disclosure. [1]
Mitigation
As of the publication date, no official patch has been released by the vendor. Users should restrict network access from the CMS server and monitor for unusual outbound traffic. Input validation on the image src parameter should be implemented to block arbitrary URLs. [1]
AI Insight generated on May 25, 2026. Synthesized from this CVE's description and the cited reference URLs; citations are validated against the source bundle.
Affected products
2= 4.1.3+ 1 more
- (no CPE)range: = 4.1.3
- (no CPE)range: 4.1.3
Patches
0No patches discovered yet.
Vulnerability mechanics
AI mechanics synthesis has not run for this CVE yet.
References
4- github.com/cydtseng/Vulnerability-Research/blob/main/dreamercms/RemoteFileInclusion-ArticleEditorImageUpload.mdmitreexploit
- vuldb.commitrethird-party-advisory
- vuldb.commitresignaturepermissions-required
- vuldb.commitrevdb-entrytechnical-description
News mentions
0No linked articles in our index yet.