A file upload issue exists in DeDeCMS before 5.7-sp1, which allows malicious users getshell.
Published January 7, 2020.
Dedecms Dedecms