DedeBIZ is a content management system from China Muyun Intelligent Technology (DedeBIZ) company. A code execution vulnerability exists in DedeBIZ version v6.2.11, which stems from the $activepath and $filename parameters in /admin/file_manage_control.php failing to correctly filter the special elements of constructed snippets. An attacker could exploit this vulnerability to cause arbitrary code execution.
CPE | Name | Operator | Version |
---|---|---|---|
dedebiz dedebiz v | eq | 6.2.11 |