3 matches found
CVE-2025-5137
A vulnerability was found in DedeCMS 5.7.117. It has been classified as critical. Affected is an unknown function of the file dede/sysverifies.php?action=getfiles of the component Incomplete Fix CVE-2018-9175. The manipulation of the argument refiles leads to code injection. It is possible to...
CVE-2024-4790
A vulnerability classified as problematic has been found in DedeCMS 5.7.114. This affects an unknown part of the file /sysverifies.php?action=view. The manipulation of the argument filename with the input ../../../../../etc/passwd leads to path traversal: '../filedir'. It is possible to initiate...
DedeCMS Arbitrary PHP Code Execution Vulnerability (CNVD-2018-08145)
Dream content management system DedeCms is a set of simple, robust, flexible, open source several characteristics of open source content management system. An arbitrary PHP code execution vulnerability exists in sysverifies.php in DedeCMS 5.7. The vulnerability arises because an attacker can...