DedeCMS v5.7.111 exists to contain a reflective cross-site scripting (XSS) vulnerability via the imgstick parameter at selectimages.php.
dedecms dedecms 5.7.111