Every CVE whose affected-product data names Adobe Dreamweaver, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (22)
CVE-2018-4924 — CVSS 9.8 (critical): Adobe Dreamweaver CC versions 18.0 and earlier have an OS Command Injection vulnerability. Successful exploitation could lead to arbitrary…
CVE-2010-3132 — CVSS 9.3 (critical): Untrusted search path vulnerability in Adobe Dreamweaver CS5 11.0 build 4916, build 4909, and probably other versions, allows local users…
CVE-2026-47906 — CVSS 8.6 (high): Dreamweaver Desktop versions 21.7 and earlier are affected by a Dependency on Vulnerable Third-Party Component vulnerability that could…
CVE-2026-47907 — CVSS 8.6 (high): Dreamweaver Desktop versions 21.7 and earlier are affected by an Improper Access Control vulnerability that could result in arbitrary code…
CVE-2025-54256 — CVSS 8.6 (high): Dreamweaver Desktop versions 21.5 and earlier are affected by a Cross-Site Request Forgery (CSRF) vulnerability that could result in…
CVE-2026-21267 — CVSS 8.6 (high): Dreamweaver Desktop versions 21.6 and earlier are affected by an Improper Neutralization of Special Elements used in an OS Command ('OS…
CVE-2026-21268 — CVSS 8.6 (high): Dreamweaver Desktop versions 21.6 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary…
CVE-2026-21271 — CVSS 8.6 (high): Dreamweaver Desktop versions 21.6 and earlier are affected by an Improper Input Validation vulnerability that could result in arbitrary…
CVE-2026-21272 — CVSS 8.6 (high): Dreamweaver Desktop versions 21.6 and earlier are affected by an Improper Input Validation vulnerability that could lead to arbitrary file…
CVE-2024-30314 — CVSS 7.8 (high): Dreamweaver Desktop versions 21.3 and earlier are affected by an Improper Neutralization of Special Elements used in an OS Command ('OS…
CVE-2025-30310 — CVSS 7.8 (high): Dreamweaver Desktop versions 21.4 and earlier are affected by an Access of Resource Using Incompatible Type ('Type Confusion')…
CVE-2026-47908 — CVSS 7.8 (high): Dreamweaver Desktop versions 21.7 and earlier are affected by an Access of Uninitialized Pointer vulnerability that could result in…
CVE-2019-7956 — CVSS 7.8 (high): Adobe Dreamweaver direct download installer versions 19.0 and below, 18.0 and below have an Insecure Library Loading (DLL hijacking)…
CVE-2026-21274 — CVSS 7.8 (high): Dreamweaver Desktop versions 21.6 and earlier are affected by an Incorrect Authorization vulnerability that could result in arbitrary code…
CVE-2020-24425 — CVSS 7.5 (high): Dreamweaver version 20.2 (and earlier) is affected by an uncontrolled search path element vulnerability that could lead to privilege…
CVE-2006-2042 — CVSS 7.5 (high): Adobe Dreamweaver 8 before 8.0.2 and MX 2004 can generate code that allows SQL injection attacks in the (1) ColdFusion, (2) PHP mySQL, (3)…
CVE-2019-7097 — CVSS 7.5 (high): Adobe Dreamweaver versions 19.0 and earlier have an insecure protocol implementation vulnerability. Successful exploitation could lead to…
CVE-2026-47909 — CVSS 6.3 (medium): Dreamweaver Desktop versions 21.7 and earlier are affected by an Improper Input Validation vulnerability that could lead to arbitrary file…
CVE-2026-47910 — CVSS 6.3 (medium): Dreamweaver Desktop versions 21.7 and earlier are affected by an Incorrect Authorization vulnerability that could lead to arbitrary file…
CVE-2021-21055 — CVSS 6.2 (medium): Adobe Dreamweaver versions 21.0 (and earlier) and 20.2 (and earlier) is affected by an untrusted search path vulnerability that could…
CVE-2008-6062 — CVSS 4.3 (medium): Cross-site scripting (XSS) vulnerability in ActionScript in arbitrary Shockwave Flash (SWF) files created by Adobe Dreamweaver, when the…