Browse all 4 CVE security advisories affecting iteachyou. AI-powered Chinese analysis, POCs, and references for each vulnerability.
iteachyou develops educational platforms focused on interactive learning experiences. Historically, their systems have been susceptible to remote code execution, cross-site scripting, and privilege escalation vulnerabilities, often stemming from insufficient input validation and access control flaws. While no major public security incidents have been documented, their CVE history indicates consistent patterns of security weaknesses in web application components and authentication mechanisms. The organization's products, designed to facilitate knowledge sharing, have occasionally exposed users to potential compromise through exploitable flaws in their core functionality, highlighting ongoing challenges in secure development practices for educational technology solutions.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2025-10320 | iteachyou Dreamer CMS updatePwd weak password — Dreamer CMSCWE-521 | 3.1 | Low | 2025-09-12 |
| CVE-2025-3977 | iteachyou Dreamer CMS Attachment download improper authorization — Dreamer CMSCWE-285 | 4.3 | Medium | 2025-04-27 |
| CVE-2025-1548 | iteachyou Dreamer CMS edit cross site scripting — Dreamer CMSCWE-79 | 3.5 | Low | 2025-02-21 |
| CVE-2025-1543 | iteachyou Dreamer CMS ueditor-1.4.3.3 path traversal — Dreamer CMSCWE-22 | 4.3 | Medium | 2025-02-21 |
This page lists every published CVE security advisory associated with iteachyou. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.