2 matches found
The vulnerability of the dialog/select_media.php implementation in the DedeCMS content management system allows attackers to read arbitrary files.
The vulnerability of the dialog/selectmedia.php implementation in the DedeCMS content management system is related to an incorrect restriction on the path to the restricted catalog. Exploiting this vulnerability could allow a malicious actor to read arbitrary files...
PT-2023-2990 · Dedecms · Dedecms
Name of the Vulnerable Software and Affected Versions: DedeCMS version 5.7.107 Description: The issue is related to a directory traversal vulnerability in the /dialog/select media.php component of DedeCMS. This vulnerability is caused by incorrect restriction of the path name to a directory with...