2 matches found
CVE-2023-37839
An arbitrary file upload vulnerability in /dede/filemanagecontrol.php of DedeCMS v5.7.109 allows attackers to execute arbitrary code via uploading a crafted PHP file...
CVE-2023-37839
CVE-2023-37839 concerns DedecMS v5.7.109. The vulnerability is an arbitrary file upload in the endpoint /dede/file_manage_control.php that allows uploading a crafted PHP file to execute arbitrary code on the server. Affected software: DedecMS v5.7.109 (DedeCMS). Root cause: insufficient validatio...