DedeCMS v6.2 exists to contain a Cross-site Scripting (XSS) vulnerability via spec_add.php.
dedecms dedecms 6.2