Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dedecms vulnerabilities and exploits
(subscribe to this query)
8.8
CVSSv3
CVE-2022-43031
DedeCMS v6.1.9 exists to contain a Cross-Site Request Forgery (CSRF) which allows malicious users to arbitrarily add Administrator accounts and modify Admin passwords.
Dedecms Dedecms 6.1.9
1 Github repository
7.2
CVSSv3
CVE-2022-40921
DedeCMS V5.7.99 exists to contain an arbitrary file upload vulnerability via the component /dede/file_manage_control.php.
Dedecms Dedecms 5.7.99
7.2
CVSSv3
CVE-2022-40886
DedeCMS 5.7.98 has a file upload vulnerability in the background.
Dedecms Dedecms 5.7.98
1 Github repository
6.1
CVSSv3
CVE-2022-36583
DedeCMS V5.7.97 exists to contain multiple cross-site scripting (XSS) vulnerabilities at /dede/co_do.php via the dopost, rpok, and aid parameters.
Dedecms Dedecms 5.7.97
9.8
CVSSv3
CVE-2022-35516
DedeCMS v5.7.93 - v5.7.96 exists to contain a remote code execution vulnerability in login.php.
Dedecms Dedecms
7.2
CVSSv3
CVE-2022-36216
DedeCMS v5.7.94 - v5.7.97 exists to contain a remote code execution vulnerability in member_toadmin.php.
Dedecms Dedecms
9.8
CVSSv3
CVE-2022-34531
DedeCMS v5.7.95 exists to contain a remote code execution (RCE) vulnerability via the component mytag_ main.php.
Dedecms Dedecms 5.7.95
6.5
CVSSv3
CVE-2022-30508
DedeCMS v5.7.93 exists to contain arbitrary file deletion vulnerability in upload.php via the delete parameter.
Dedecms Dedecms 5.7.93
9.8
CVSSv3
CVE-2022-23337
DedeCMS v5.7.87 exists to contain a SQL injection vulnerability in article_coonepage_rule.php via the ids parameter.
Dedecms Dedecms 5.7.87
6.1
CVSSv3
CVE-2020-36494
DedeCMS v7.5 SP2 exists to contain multiple cross-site scripting (XSS) vulnerabilities in the component mychannel_edit.php via the `filename`, `mid`, `userid`, and `templet' parameters.
Dedecms Dedecms 7.5
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-33228
CVE-2024-20361
log injection
bypass
CVE-2024-4985
CVE-2024-35223
CVE-2024-29849
CVE-2024-31893
IMAP
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »