Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

239 matches found

RedhatCVE
RedhatCVEadded 2026/01/09 12:40 p.m.8 views

CVE-2023-43232

A stored cross-site scripting XSS vulnerability in the Website column management function of DedeBIZ v6.2.11 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the title parameter...

5.4CVSS5.6AI score0.00764EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/01/09 12:33 p.m.6 views

CVE-2023-31546

Cross Site Scripting XSS vulnerability in DedeBIZ v6.0.3 allows attackers to run arbitrary code via the search feature...

9.6CVSS6.2AI score0.21195EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2026/01/09 12:32 p.m.1 views

CVE-2023-4170

A vulnerability was found in DedeBIZ 6.2.10. It has been rated as problematic. Affected by this issue is some unknown functionality of the component Article Handler. The manipulation leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public a...

4.8CVSS5.8AI score0.00081EPSS
Exploits1References1
RedhatCVE
RedhatCVEadded 2025/12/15 4:38 p.m.3 views

CVE-2025-14648

A security vulnerability has been detected in DedeBIZ up to 6.5.9. Affected by this vulnerability is an unknown functionality of the file /src/admin/catalogadd.php. Such manipulation leads to command injection. It is possible to launch the attack remotely. The exploit has been disclosed publicly...

7.2CVSS6.8AI score0.00157EPSS
Exploits1References1
EUVD
EUVDadded 2025/12/14 9:30 a.m.1 views

EUVD-2025-203288

A security vulnerability has been detected in DedeBIZ up to 6.5.9. Affected by this vulnerability is an unknown functionality of the file /src/admin/catalogadd.php. Such manipulation leads to command injection. It is possible to launch the attack remotely. The exploit has been disclosed publicly...

5.8CVSS6.4AI score0.00157EPSS
Exploits1References5
NVD
NVDadded 2025/12/14 7:15 a.m.1 views

CVE-2025-14648

A security vulnerability has been detected in DedeBIZ up to 6.5.9. Affected by this vulnerability is an unknown functionality of the file /src/admin/catalogadd.php. Such manipulation leads to command injection. It is possible to launch the attack remotely. The exploit has been disclosed publicly...

7.2CVSS0.00157EPSS
Exploits1References4
OSV
OSVadded 2025/12/14 7:15 a.m.0 views

CVE-2025-14648

A security vulnerability has been detected in DedeBIZ up to 6.5.9. Affected by this vulnerability is an unknown functionality of the file /src/admin/catalogadd.php. Such manipulation leads to command injection. It is possible to launch the attack remotely. The exploit has been disclosed publicly...

7.2CVSS5.5AI score
Exploits0References4
Cvelist
Cvelistadded 2025/12/14 7:2 a.m.20 views

CVE-2025-14648 DedeBIZ catalog_add.php command injection

A security vulnerability has been detected in DedeBIZ up to 6.5.9. Affected by this vulnerability is an unknown functionality of the file /src/admin/catalogadd.php. Such manipulation leads to command injection. It is possible to launch the attack remotely. The exploit has been disclosed publicly...

5.8CVSS0.00157EPSS
Exploits1References4
Vulnrichment
Vulnrichmentadded 2025/12/14 7:2 a.m.2 views

CVE-2025-14648 DedeBIZ catalog_add.php command injection

A security vulnerability has been detected in DedeBIZ up to 6.5.9. Affected by this vulnerability is an unknown functionality of the file /src/admin/catalogadd.php. Such manipulation leads to command injection. It is possible to launch the attack remotely. The exploit has been disclosed publicly...

5.8CVSS6.6AI score0.00157EPSS
Exploits1References4
CVE
CVEadded 2025/12/14 7:2 a.m.12 views

CVE-2025-14648

CVE-2025-14648 affects DedeBIZ up to 6.5.9. The vulnerability is in the file /src/admin/catalog_add.php, where manipulation leads to a remote command injection . Several sources confirm the attack can be launched remotely and that the exploit has been disclosed publicly. The Red Hat and EU ENISA ...

7.2CVSS6.6AI score0.00157EPSS
Exploits1References4Affected Software1
Positive Technologies
Positive Technologiesadded 2025/12/14 12:0 a.m.4 views

PT-2025-51152

Name of the Vulnerable Software and Affected Versions DedeBIZ versions up to 6.5.9 Description A security issue exists in DedeBIZ that allows for remote command injection. This is due to manipulation of a functionality within the file /src/admin/catalog add.php. The exploit for this issue has bee...

7.2CVSS4.4AI score0.00157EPSS
Exploits1References11
CNNVD
CNNVDadded 2025/12/14 12:0 a.m.3 views

DedeBIZ 命令注入漏洞

DedeBIZ is a content management system from China Muyun Intelligence DedeBIZ company. A command injection vulnerability exists in DedeBIZ 6.5.9 and earlier versions, which stems from incorrect manipulation of the file /src/admin/catalogadd.php, which could lead to a command injection attack...

7.2CVSS5.3AI score0.00157EPSS
Exploits1References5
RedhatCVE
RedhatCVEadded 2025/11/11 3:47 a.m.2 views

CVE-2025-12927

A security vulnerability has been detected in DedeBIZ up to 6.3.2. The impacted element is an unknown function of the file /admin/archivesadd.php. Such manipulation of the argument flags leads to sql injection. The attack can be executed remotely. The exploit has been disclosed publicly and may b...

7.2CVSS5.1AI score0.00025EPSS
Exploits0References1
OSV
OSVadded 2025/11/10 3:15 a.m.0 views

CVE-2025-12927

A security vulnerability has been detected in DedeBIZ up to 6.3.2. The impacted element is an unknown function of the file /admin/archivesadd.php. Such manipulation of the argument flags leads to sql injection. The attack can be executed remotely. The exploit has been disclosed publicly and may b...

7.2CVSS5.7AI score
Exploits0References4
NVD
NVDadded 2025/11/10 3:15 a.m.2 views

CVE-2025-12927

A security vulnerability has been detected in DedeBIZ up to 6.3.2. The impacted element is an unknown function of the file /admin/archivesadd.php. Such manipulation of the argument flags leads to sql injection. The attack can be executed remotely. The exploit has been disclosed publicly and may b...

7.2CVSS0.00025EPSS
Exploits0References4
EUVD
EUVDadded 2025/11/10 2:32 a.m.3 views

EUVD-2025-38731

A security vulnerability has been detected in DedeBIZ up to 6.3.2. The impacted element is an unknown function of the file /admin/archivesadd.php. Such manipulation of the argument flags leads to sql injection. The attack can be executed remotely. The exploit has been disclosed publicly and may b...

5.8CVSS6.5AI score0.00025EPSS
Exploits0References5
Cvelist
Cvelistadded 2025/11/10 2:32 a.m.7 views

CVE-2025-12927 DedeBIZ archives_add.php sql injection

A security vulnerability has been detected in DedeBIZ up to 6.3.2. The impacted element is an unknown function of the file /admin/archivesadd.php. Such manipulation of the argument flags leads to sql injection. The attack can be executed remotely. The exploit has been disclosed publicly and may b...

5.8CVSS0.00025EPSS
Exploits0References4
Vulnrichment
Vulnrichmentadded 2025/11/10 2:32 a.m.2 views

CVE-2025-12927 DedeBIZ archives_add.php sql injection

A security vulnerability has been detected in DedeBIZ up to 6.3.2. The impacted element is an unknown function of the file /admin/archivesadd.php. Such manipulation of the argument flags leads to sql injection. The attack can be executed remotely. The exploit has been disclosed publicly and may b...

5.8CVSS6.7AI score0.00025EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2025/11/10 12:0 a.m.8 views

PT-2025-45592

A security vulnerability has been detected in DedeBIZ up to 6.3.2. The impacted element is an unknown function of the file /admin/archives add.php. Such manipulation of the argument flags leads to sql injection. The attack can be executed remotely. The exploit has been disclosed publicly and may ...

5.8CVSS7AI score0.00025EPSS
Exploits0References5
RedhatCVE
RedhatCVEadded 2025/11/08 4:54 p.m.2 views

CVE-2025-12861

A vulnerability was determined in DedeBIZ up to 6.3.2. Affected by this vulnerability is an unknown functionality of the file /admin/specadd.php. This manipulation of the argument flags causes sql injection. The attack is possible to be carried out remotely. The exploit has been publicly disclose...

7.2CVSS7AI score0.00029EPSS
Exploits0References1
Rows per page
Query Builder