Lucene search
K

7 matches found

NVD
NVD
added 2024/12/04 11:15 p.m.22 views

CVE-2024-12183

A vulnerability, which was classified as problematic, was found in DedeCMS 5.7.116. This affects the function RemoveXSS of the file /plus/carbuyaction.php of the component HTTP POST Request Handler. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. Th...

5.4CVSS0.00424EPSS
Exploits1References4
OSV
OSV
added 2024/12/04 11:15 p.m.5 views

CVE-2024-12182

A vulnerability, which was classified as problematic, has been found in DedeCMS 5.7.116. Affected by this issue is some unknown functionality of the file /member/softadd.php. The manipulation of the argument body leads to cross site scripting. The attack may be launched remotely. The exploit has...

5.4CVSS4AI score0.00402EPSS
Exploits1References4
NVD
NVD
added 2024/12/04 11:15 p.m.25 views

CVE-2024-12182

A vulnerability, which was classified as problematic, has been found in DedeCMS 5.7.116. Affected by this issue is some unknown functionality of the file /member/softadd.php. The manipulation of the argument body leads to cross site scripting. The attack may be launched remotely. The exploit has...

5.4CVSS0.00402EPSS
Exploits1References4
NVD
NVD
added 2024/12/04 10:15 p.m.17 views

CVE-2024-12180

A vulnerability classified as problematic has been found in DedeCMS 5.7.116. Affected is an unknown function of the file /member/articleadd.php. The manipulation of the argument body leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the...

5.4CVSS0.0044EPSS
Exploits1References4
CVE
CVE
added 2024/12/04 10:0 p.m.64 views

CVE-2024-12180

CVE-2024-12180 affects DedeCMS 5.7.116. The vulnerability lies in an unknown function within the file /member/article_add.php, where manipulation of the body argument enables cross-site scripting. Exploitation can be performed remotely, and the exploit has been disclosed publicly. Several connect...

5.4CVSS3.8AI score0.0044EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2024/12/04 10:0 p.m.15 views

CVE-2024-12180 DedeCMS article_add.php cross site scripting

A vulnerability classified as problematic has been found in DedeCMS 5.7.116. Affected is an unknown function of the file /member/articleadd.php. The manipulation of the argument body leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the...

5.3CVSS6.2AI score0.0044EPSS
Exploits1References4
CVE
CVE
added 2024/11/12 6:0 p.m.60 views

CVE-2024-11138

CVE-2024-11138 affects DedeCMS 5.7.116. The issue is in /dede/uploads/dede/friendlink_add.php where manipulating the logoimg argument allows unrestricted file uploads, enabling remote access potentially leading to remote code execution. Exploitation has been disclosed publicly per sources, indica...

9.8CVSS3.8AI score0.02476EPSS
Exploits0References4Affected Software1
Rows per page
Query Builder