Internet Information Co Ltd Dreammaker vulnerabilities
2 known vulnerabilities affecting internet_information_co_ltd/dreammaker.
Total CVEs
2
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL2
Vulnerabilities
Page 1 of 1
CVE-2026-24729P2CRITICALCVSS 10.0fixed in 2025/10/222026-01-30
CVE-2026-24729 [CRITICAL] CWE-434 CVE-2026-24729: An unrestricted upload of file with dangerous type vulnerability in the file upload function of Inte
An unrestricted upload of file with dangerous type vulnerability in the file upload function of Interinfo DreamMaker versions before 2025/10/22 allows remote attackers to execute arbitrary system commands via a malicious class file.
nvd
CVE-2026-24728P2CRITICALCVSS 9.3fixed in 2025/10/222026-01-30
CVE-2026-24728 [CRITICAL] CWE-306 CVE-2026-24728: A missing authentication for critical function vulnerability in the /servlet/baServer3 endpoint of I
A missing authentication for critical function vulnerability in the /servlet/baServer3 endpoint of Interinfo DreamMaker versions before 2025/10/22 allows remote attackers to access exposed administrative functionality without prior authentication.
nvd