CVE-2024-4587

A vulnerability was found in DedeCMS 5.7 and classified as problematic. This issue affects some unknown processing of the file /src/dede/tpl.php. The manipulation leads to cross-site request forgery. The attack may be initiated remotely. The exploit has been disclosed to the public and may be use...

PT-2024-31821 · Dedecms · Dedecms

Name of the Vulnerable Software and Affected Versions: DedeCMS version 5.7 Description: A issue was found in the processing of the file /src/dede/tpl.php, which can lead to cross-site request forgery. The attack may be initiated remotely. Recommendations: For DedeCMS version 5.7, consider...

CVE-2023-34842

Remote Code Execution vulnerability in DedeCMS through 5.7.109 allows remote attackers to run arbitrary code via crafted POST request to /dede/tpl.php...

DedeCMS V5.7 SP2 suffers from file upload vulnerability (CNVD-2018-01222)

Weaving dream content management system DedeCms is a PHP open source website management system. DedeCMS V5.7 SP2 version of the dede/tpl.php file file upload vulnerability, an attacker can use the vulnerability to upload script files, can get webshell...