Lucene search
K

17 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-48747

Malicious code in bioql PyPI...

8.8CVSS6.6AI score0.00479EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2025/05/23 9:33 a.m.9 views

CVE-2024-0557

A vulnerability, which was classified as problematic, was found in DedeBIZ 6.3.0. This affects an unknown part of the component Website Copyright Setting. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public a...

5.4CVSS6AI score0.00459EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/08/18 1:31 p.m.8 views

CVE-2024-7906 DedeBIZ Attachment Settings select_images_post.php get_mime_type unrestricted upload

A vulnerability classified as critical was found in DedeBIZ 6.3.0. This vulnerability affects the function getmimetype of the file /admin/dialog/selectimagespost.php of the component Attachment Settings. The manipulation of the argument upload leads to unrestricted upload. The attack can be...

6.5CVSS7.1AI score0.00479EPSS
Exploits0References4
CVE
CVE
added 2024/08/18 1:31 p.m.49 views

CVE-2024-7906

DedeBIZ 6.3.0 is affected, specifically the Attachment Settings component. The vulnerability lies in the get_mime_type function of /admin/dialog/select_images_post.php, where manipulating the upload parameter enables unrestricted file uploads. This can be exploited remotely, and the exploit has b...

8.8CVSS6.5AI score0.00479EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2024/08/18 12:15 p.m.19 views

CVE-2024-7905

A vulnerability classified as critical has been found in DedeBIZ 6.3.0. This affects the function AdminUpload of the file admin/archivesdo.php. The manipulation of the argument litpic leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to t...

7.2CVSS0.0066EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2024/08/18 11:31 a.m.12 views

CVE-2024-7905 DedeBIZ archives_do.php AdminUpload unrestricted upload

A vulnerability classified as critical has been found in DedeBIZ 6.3.0. This affects the function AdminUpload of the file admin/archivesdo.php. The manipulation of the argument litpic leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to t...

6.5CVSS6.5AI score0.0066EPSS
Exploits1References4
Cvelist
Cvelist
added 2024/08/18 11:31 a.m.19 views

CVE-2024-7905 DedeBIZ archives_do.php AdminUpload unrestricted upload

A vulnerability classified as critical has been found in DedeBIZ 6.3.0. This affects the function AdminUpload of the file admin/archivesdo.php. The manipulation of the argument litpic leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to t...

6.5CVSS0.0066EPSS
Exploits1References4
OSV
OSV
added 2024/08/18 9:15 a.m.10 views

CVE-2024-7904

A vulnerability was found in DedeBIZ 6.3.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file admin/filemanagecontrol.php of the component File Extension Handler. The manipulation of the argument upfile1 leads to unrestricted upload. The attack may be...

8.8CVSS6.2AI score0.00665EPSS
Exploits1References4
NVD
NVD
added 2024/08/18 9:15 a.m.19 views

CVE-2024-7904

A vulnerability was found in DedeBIZ 6.3.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file admin/filemanagecontrol.php of the component File Extension Handler. The manipulation of the argument upfile1 leads to unrestricted upload. The attack may be...

8.8CVSS0.00665EPSS
Exploits1References4
Vulnrichment
Vulnrichment
added 2024/08/18 8:31 a.m.21 views

CVE-2024-7904 DedeBIZ File Extension file_manage_control.php unrestricted upload

A vulnerability was found in DedeBIZ 6.3.0. It has been rated as critical. Affected by this issue is some unknown functionality of the file admin/filemanagecontrol.php of the component File Extension Handler. The manipulation of the argument upfile1 leads to unrestricted upload. The attack may be...

6.5CVSS7AI score0.00665EPSS
Exploits1References4
NVD
NVD
added 2024/08/18 7:15 a.m.22 views

CVE-2024-7903

A vulnerability was found in DedeBIZ 6.3.0. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file admin/mediaadd.php of the component File Extension Handler. The manipulation of the argument upfile1 leads to unrestricted upload. The attack can be...

8.8CVSS0.00722EPSS
Exploits1References4
CVE
CVE
added 2024/08/18 7:0 a.m.53 views

CVE-2024-7903

CVE-2024-7903 affects DedeBIZ 6.3.0. The vulnerability resides in the admin/media_add.php functionality (File Extension Handler): manipulating the upfile1 parameter enables unrestricted file uploads, allowing remote, unauthenticated-like impact as described. Exploitation details are publicly disc...

8.8CVSS6.4AI score0.00722EPSS
Exploits1References4Affected Software1
OSV
OSV
added 2024/01/15 5:15 p.m.4 views

CVE-2024-0557

A vulnerability, which was classified as problematic, was found in DedeBIZ 6.3.0. This affects an unknown part of the component Website Copyright Setting. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public a...

5.4CVSS3.9AI score0.00459EPSS
Exploits1References3
NVD
NVD
added 2024/01/15 5:15 p.m.11 views

CVE-2024-0557

A vulnerability, which was classified as problematic, was found in DedeBIZ 6.3.0. This affects an unknown part of the component Website Copyright Setting. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public a...

5.4CVSS3.9AI score0.00459EPSS
Exploits1References3
Prion
Prion
added 2024/01/15 5:15 p.m.24 views

Cross site scripting

A vulnerability, which was classified as problematic, was found in DedeBIZ 6.3.0. This affects an unknown part of the component Website Copyright Setting. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public a...

3.3CVSS6.3AI score0.00459EPSS
Exploits1References3Affected Software1
CVE
CVE
added 2024/01/15 4:31 p.m.42 views

CVE-2024-0557

CVE-2024-0557 affects DedeBIZ 6.3.0, specifically the Website Copyright Setting component. The vulnerability enables cross-site scripting and can be exploited remotely; exploitation status is public, and the vendor did not respond to disclosure. Several connected sources confirm the issue and sco...

5.4CVSS5.2AI score0.00459EPSS
Exploits1References3Affected Software1
Positive Technologies
Positive Technologies
added 2024/01/15 12:0 a.m.5 views

PT-2024-15657 · Dedebiz · Dedebiz

Name of the Vulnerable Software and Affected Versions: DedeBIZ version 6.3.0 Description: A critical vulnerability has been found in DedeBIZ, affecting unknown code in the file /admin/makehtml freelist action.php. The manipulation of the startid argument leads to SQL injection. The attack can be...

7.2CVSS5.9AI score0.00592EPSS
Exploits1References7
Rows per page
Query Builder