6.9 Medium
AI Score
Confidence
High
0.0004 Low
EPSS
Percentile
9.1%
Cross Site Scripting vulnerability in DedeCMS v.5.7 allows a local attacker to execute arbitrary code via a crafted payload to the stepselect_main.php component.
github.com/ysl1415926/cve/blob/main/DedeCMSv5.7.md