CVE-2018-12045
CVE-2018-12045 affects Desdev DedeCMS up to version 5.7SP2. The flaw is in dede/file_manage_control.php where a request to dede/file_manage_view.php?fmdo=upload with parameter upfile1 can upload arbitrary files (e.g., PHP). This could enable an attacker to place executable code on the server. The...