Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

dreamstechnologies — Vulnerabilities & Security Advisories 8

Browse all 8 CVE security advisories affecting dreamstechnologies. AI-powered Chinese analysis, POCs, and references for each vulnerability.

Dreamstechnologies develops enterprise software solutions for data management and analytics platforms. Historically, their products have been vulnerable to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and access control flaws. While no major public security incidents have been documented, the eight CVEs on record highlight recurring issues in authentication mechanisms and secure coding practices. Their security posture suggests a need for improved vulnerability management and regular security assessments to address persistent weaknesses in their software architecture.

Top products by dreamstechnologies: Doccure Doccure Core Truelysell Core Listee Mentoring
CVE IDTitleCVSSSeverityPublished
CVE-2025-13618 Mentoring <= 1.2.8 - Unauthenticated Privilege Escalation in mentoring_process_registration — MentoringCWE-269 9.8 Critical2026-05-05
CVE-2025-12981 Listee <= 1.1.6 - Unauthenticated Privilege Escalation — ListeeCWE-269 9.8 Critical2026-02-27
CVE-2025-8572 Truelysell Core <= 1.8.7 - Unauthenticated Privilege Escalation via Registration — Truelysell CoreCWE-269 9.8 Critical2026-02-14
CVE-2025-8900 Doccure Core < 1.5.4 - Unauthenticated Privilege Escalation — Doccure CoreCWE-269 9.8 Critical2025-11-03
CVE-2025-10742 Truelysell Core <= 1.8.6 - Unauthenticated Arbitrary User Password Change — Truelysell CoreCWE-639 9.8 Critical2025-10-16
CVE-2025-9113 Doccure Core <= 1.5.3 - Unauthenticated Arbitrary File Upload — Doccure CoreCWE-434 9.8 Critical2025-09-08
CVE-2025-9114 Doccure <= 1.5.0 - Unauthenticated Arbitrary User Password Change — DoccureCWE-639 9.8 Critical2025-09-08
CVE-2025-9112 Doccure <= 1.5.0 - Authenticated (Subscriber+) Arbitrary File Upload — DoccureCWE-434 8.8 High2025-09-08

This page lists every published CVE security advisory associated with dreamstechnologies. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.