Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

102 matches found

Vulnrichment
Vulnrichmentadded 2024/04/25 12:0 a.m.19 views

CVE-2024-29660

Cross Site Scripting vulnerability in DedeCMS v.5.7 allows a local attacker to execute arbitrary code via a crafted payload to the stepselectmain.php component...

7AI score0.00232EPSS
Exploits0References1
NVD
NVDadded 2024/04/22 12:15 p.m.9 views

CVE-2024-29661

A File Upload vulnerability in DedeCMS v5.7 allows a local attacker to execute arbitrary code via a crafted payload...

9.8CVSS6.5AI score0.00674EPSS
Exploits0References1
Cvelist
Cvelistadded 2024/04/22 12:0 a.m.15 views

CVE-2024-29661

A File Upload vulnerability in DedeCMS v5.7 allows a local attacker to execute arbitrary code via a crafted payload...

7.4AI score0.00674EPSS
Exploits0References1
CVE
CVEadded 2024/04/22 12:0 a.m.57 views

CVE-2024-29661

CVE-2024-29661 describes a file-upload vulnerability in DedeCMS v5.7 that allows a local attacker to execute arbitrary code via a crafted payload. The vulnerability is consistently reported across multiple sources (Red Hat, NVD, CNNVD, CVE list). The NVD entry lists a high-impact scenario (C:H/I:...

9.8CVSS7.4AI score0.00674EPSS
Exploits0References1Affected Software1
NVD
NVDadded 2024/04/02 2:15 p.m.10 views

CVE-2024-30965

DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /src/dede/memberscores.php...

8.8CVSS6.5AI score0.00365EPSS
Exploits1References2
NVD
NVDadded 2024/04/02 1:15 p.m.13 views

CVE-2024-30946

DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /src/dede/codo.php...

5.5CVSS6.5AI score0.00178EPSS
Exploits1References1
Vulnrichment
Vulnrichmentadded 2024/04/02 12:0 a.m.17 views

CVE-2024-30965

DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /src/dede/memberscores.php...

7.7AI score0.00365EPSS
Exploits1References2
Vulnrichment
Vulnrichmentadded 2024/04/02 12:0 a.m.17 views

CVE-2024-30946

DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /src/dede/codo.php...

7.5AI score0.00178EPSS
Exploits1References1
Cvelist
Cvelistadded 2024/04/02 12:0 a.m.19 views

CVE-2024-30965

DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /src/dede/memberscores.php...

7.4AI score0.00365EPSS
Exploits1References2
CVE
CVEadded 2024/04/02 12:0 a.m.62 views

CVE-2024-30965

CVE-2024-30965 : DedeCMS v5.7 is reported to have a Cross-Site Request Forgery (CSRF) vulnerability reachable via the endpoint /src/dede/member_scores.php. The Red Hat, NVD, OSV, CNNVD and PTSecurity records corroborate a CSRF issue affecting DedeCMS 5.7, with some sources describing an attacker‑...

8.8CVSS7.4AI score0.00365EPSS
Exploits1References2Affected Software1
CVE
CVEadded 2024/04/02 12:0 a.m.64 views

CVE-2024-30946

CVE-2024-30946 concerns a CSRF vulnerability in DedeCMS v5.7 exploitable via the API endpoint /src/dede/co_do.php. The core issue is Cross-Site Request Forgery affecting DedeCMS 5.7, as documented by multiple feeds (NVD/CNNVD/Red Hat and PTSecurity), with CVSS 3.1 vector indicating network access...

5.5CVSS7.5AI score0.00178EPSS
Exploits1References1Affected Software1
Vulnrichment
Vulnrichmentadded 2024/03/26 12:0 a.m.13 views

CVE-2024-29684

DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery CSRF via the component /src/dede/makehtmlhomepage.php allowing a remote attacker to execute arbitrary code...

8.5AI score0.00571EPSS
Exploits1References1
Cvelist
Cvelistadded 2024/03/26 12:0 a.m.20 views

CVE-2024-29684

DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery CSRF via the component /src/dede/makehtmlhomepage.php allowing a remote attacker to execute arbitrary code...

8.1AI score0.00571EPSS
Exploits1References1
NVD
NVDadded 2024/03/13 4:15 p.m.14 views

CVE-2024-28669

DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /dede/freelistedit.php...

5.4CVSS6.5AI score0.00244EPSS
Exploits1References1
NVD
NVDadded 2024/03/13 4:15 p.m.12 views

CVE-2024-28670

DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /dede/freelistmain.php...

6.1CVSS6.5AI score0.00242EPSS
Exploits1References1
NVD
NVDadded 2024/03/13 4:15 p.m.12 views

CVE-2024-28673

DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /dede/mychanneledit.php...

8.8CVSS6.5AI score0.00371EPSS
Exploits1References1
NVD
NVDadded 2024/03/13 4:15 p.m.8 views

CVE-2024-28680

DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /dede/diyadd.php...

6.1CVSS6.5AI score0.00482EPSS
Exploits1References1
NVD
NVDadded 2024/03/13 4:15 p.m.13 views

CVE-2024-28683

DedeCMS v5.7 was discovered to contain a cross-site scripting XSS vulnerability via create file...

6.1CVSS6.1AI score0.00472EPSS
Exploits1References1
NVD
NVDadded 2024/03/13 4:15 p.m.11 views

CVE-2024-28671

DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery CSRF vulnerability via /dede/stepselectmain.php...

8.8CVSS6.5AI score0.00876EPSS
Exploits1References1
NVD
NVDadded 2024/03/13 4:15 p.m.10 views

CVE-2024-28679

DedeCMS v5.7 was discovered to contain a cross-site scripting XSS vulnerability via Photo Collection...

6.1CVSS6.1AI score0.00472EPSS
Exploits1References1
Rows per page
Query Builder