CVE-2024-3148

A vulnerability, which was classified as critical, has been found in DedeCMS 5.7.112. This issue affects some unknown processing of the file dede/makehtmlarchivesaction.php. The manipulation leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public...

PT-2024-24112 · Dedecms · Dedecms

Name of the Vulnerable Software and Affected Versions: DedeCMS version 5.7.112 Description: A critical issue has been found in the processing of the file dede/makehtml archives action.php, leading to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public...

Desdev DedeCMS Security Breach

Desdev DedeCMS Dream Weaving Content Management System is a PHP-based open-source content management system CMS of China Zhuozhuo network Desdev company. The system features content publishing, content management, content editing and content retrieval. A security vulnerability exists in DedeCMS...

PT-2024-19602 · Dedecms · Dedecms

Name of the Vulnerable Software and Affected Versions: DedeCMS version 5.7.112 Description: The issue is related to a File Upload vulnerability. This vulnerability can be exploited via the "uploads/dede/module upload.php" endpoint. Recommendations: For DedeCMS version 5.7.112, consider restrictin...

DeDeCMS 代码问题漏洞

DeDeCMS is a PHP-based open source content management system CMS. The system features content publishing, content management, content editing and content retrieval. A file upload vulnerability exists in DeDeCMS version 5.7.112 and earlier versions, which stems from the application's lack of...