CVE-2018-12046
The CVE-2018-12046 entry concerns DedeCMS up to version 5.7SP2. A flaw in dede/file_manage_control.php allows arbitrary file write via a request to dede/file_manage_view.php?fmdo=newfile, passing name and str parameters to write a new PHP file. This is the stated vulnerability and impact in the p...