Interinfo Dreammaker
7 CVEs affecting Interinfo Dreammaker. Latest disclosed: 2026-05-29. Critical: 2, High: 3.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2026-10071 | Critical | 9.8 | 2026-05-29 | DreamMaker developed by Interinfo has an Arbitrary File Upload vulnerability, allowing unauthenticated remote attackers to upload and execute web shell backdoo… |
CVE-2024-11979 | Critical | 9.8 | 2024-11-29 | DreamMaker from Interinfo has a Path Traversal vulnerability and does not restrict the types of uploaded files. This allows unauthenticated remote attackers to… |
CVE-2026-10073 | High | 7.5 | 2026-05-29 | DreamMaker developed by Interinfo has an Arbitrary File Read vulnerability, allowing unauthenticated local attackers to exploit Relative Path Traversal to down… |
CVE-2024-11978 | High | 7.5 | 2024-11-29 | DreamMaker from Interinfo has a Path Traversal vulnerability, allowing unauthenticated remote attackers to exploit this vulnerability to read arbitrary system… |
CVE-2026-10072 | High | 7.2 | 2026-05-29 | DreamMaker developed by Interinfo has an Arbitrary File Upload vulnerability, allowing privileged remote attackers to upload and execute web shell backdoors, t… |
CVE-2026-10075 | Medium | 5.3 | 2026-05-29 | DreamMaker developed by Interinfo has a Path Traversal vulnerability, allowing unauthenticated remote attackers to read file names under arbitrary path by expl… |
CVE-2026-10074 | Medium | 4.9 | 2026-05-29 | DreamMaker developed by Interinfo has an Arbitrary File Read vulnerability, allowing privileged local attackers to exploit Relative Path Traversal to download… |