Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
dedecms vulnerabilities and exploits
(subscribe to this query)
6.7
CVSSv3
CVE-2022-43192
An arbitrary file upload vulnerability in the component /dede/file_manage_control.php of Dedecms v5.7.101 allows malicious users to execute arbitrary code via a crafted PHP file. This vulnerability is related to an incomplete fix for CVE-2022-40886.
Dedecms Dedecms 5.7.101
8.8
CVSSv3
CVE-2022-43031
DedeCMS v6.1.9 exists to contain a Cross-Site Request Forgery (CSRF) which allows malicious users to arbitrarily add Administrator accounts and modify Admin passwords.
Dedecms Dedecms 6.1.9
1 Github repository
7.2
CVSSv3
CVE-2022-40921
DedeCMS V5.7.99 exists to contain an arbitrary file upload vulnerability via the component /dede/file_manage_control.php.
Dedecms Dedecms 5.7.99
7.2
CVSSv3
CVE-2022-40886
DedeCMS 5.7.98 has a file upload vulnerability in the background.
Dedecms Dedecms 5.7.98
1 Github repository
6.1
CVSSv3
CVE-2022-36583
DedeCMS V5.7.97 exists to contain multiple cross-site scripting (XSS) vulnerabilities at /dede/co_do.php via the dopost, rpok, and aid parameters.
Dedecms Dedecms 5.7.97
7.2
CVSSv3
CVE-2022-36216
DedeCMS v5.7.94 - v5.7.97 exists to contain a remote code execution vulnerability in member_toadmin.php.
Dedecms Dedecms
9.8
CVSSv3
CVE-2022-35516
DedeCMS v5.7.93 - v5.7.96 exists to contain a remote code execution vulnerability in login.php.
Dedecms Dedecms
9.8
CVSSv3
CVE-2022-34531
DedeCMS v5.7.95 exists to contain a remote code execution (RCE) vulnerability via the component mytag_ main.php.
Dedecms Dedecms 5.7.95
6.5
CVSSv3
CVE-2022-30508
DedeCMS v5.7.93 exists to contain arbitrary file deletion vulnerability in upload.php via the delete parameter.
Dedecms Dedecms 5.7.93
9.8
CVSSv3
CVE-2022-23337
DedeCMS v5.7.87 exists to contain a SQL injection vulnerability in article_coonepage_rule.php via the ids parameter.
Dedecms Dedecms 5.7.87
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
path traversal
CVE-2024-33545
CVE-2024-35725
CVE-2024-32704
overflow
file upload
CVE-2024-0230
CVE-2024-32705
CVE-2024-23692
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
7
8
9
10
NEXT »