Filters

Versions

5.7-sp2
9
5.7
7
5.7.106
5
5.6
3
5.7-sp1
3
5.7.111
2
5.7.112
2
5.1
1
5.7.100
1
5.7.107
1
5.7.109
1
5.7.115
1
5.7.94
1
5.7.97
1
5.7.98
1
5.7.99
1
6.1.9
1

Dedecms DedecmsDedeCMS article_string_mix.php os command injection

high
8.8
EPSS
0.46%
First published (updated )
CVE-2024-9076

Dedecms DedecmsDedeCMS article_template_rand.php code injection

high
7.2
EPSS
0.04%
First published (updated )
CVE-2024-6940

Dedecms DedecmsMalicious File Upload

high
8.8
EPSS
0.05%
First published (updated )
CVE-2024-22895

Dedecms DedecmsCSRF

high
8.8
First published (updated )
CVE-2023-43275

Dedecms DedecmsDedeCMS album_add.php AddMyAddon os command injection

high
8.8
First published (updated )
CVE-2023-5301

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Dedecms DedecmsMalicious File Upload

high
8.8
First published (updated )
CVE-2023-43226

Dedecms DedecmsDedeCMS select_templets_post.php absolute path traversal

high
8.8
First published (updated )
CVE-2023-5022

Dedecms DedecmsMalicious File Upload

high
8.8
First published (updated )
CVE-2023-36298

Dedecms DedecmsDedeCMS article_allowurl_edit.php code injection

high
8.8
First published (updated )
CVE-2023-2928

Dedecms DedecmsDedeCMS config.php UpDateMemberModCache unrestricted upload

high
8.8
First published (updated )
CVE-2023-2424

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Dedecms DedecmsPath Traversal

high
7.5
First published (updated )
CVE-2023-30380

Dedecms DedecmsSQL Injection

high
7.2
First published (updated )
CVE-2023-27733

Dedecms DedecmsSQL Injection

high
7.2
First published (updated )
CVE-2023-27707

Dedecms DedecmsSQL Injection

high
7.2
First published (updated )
CVE-2023-27709

Dedecms DedecmsCSRF

high
8.8
First published (updated )
CVE-2022-43031

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Dedecms DedecmsMalicious File Upload

high
7.2
First published (updated )
CVE-2022-40921

Dedecms DedecmsMalicious File Upload

high
7.2
First published (updated )
CVE-2022-40886

Dedecms DedecmsCode Injection

high
7.2
First published (updated )
CVE-2022-36216

Dedecms DedecmsCSRF

high
8.8
First published (updated )
CVE-2020-18917

Dedecms DedecmsCSRF

high
8.8
First published (updated )
CVE-2021-32073

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Dedecms DedecmsMalicious File Upload

high
8.8
First published (updated )
CVE-2015-4553

Dedecms DedecmsMalicious File Upload

high
8.8
First published (updated )
CVE-2019-8933

Dedecms DedecmsMalicious File Upload, Input Validation

high
7.5
First published (updated )
CVE-2019-8362

Dedecms Dedecmsuploads/include/dialog/select_soft.php in DedeCMS V57_UTF8_SP2 allows remote attackers to execute ar…

high
8.8
First published (updated )
CVE-2019-6289

Dedecms DedecmsCode Injection

high
8.8
First published (updated )
CVE-2018-20129

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Dedecms DedecmsDedeCMS 5.7 SP2 allows XML injection, and resultant remote code execution, via a "<file type='file' …

high
7.2
First published (updated )
CVE-2018-16784

Dedecms DedecmsXML injection vulnerability exists in the file of DedeCMS V5.7 SP2 version, which can be utilized by…

high
8.8
First published (updated )
CVE-2018-16785

Dedecms DedecmsInput Validation

high
7.5
First published (updated )
CVE-2018-12046

Dedecms DedecmsCSRF

high
8.8
First published (updated )
CVE-2018-9134

Dedecms DedecmsCSRF

high
8.8
First published (updated )
CVE-2018-7700

Never miss a vulnerability like this again

Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.

Read MoreStart Free Trial

Dedecms DedecmsDedeCMS 5.7 allows remote attackers to discover the full path via a direct request for include/downm…

high
7.5
First published (updated )
CVE-2018-6910

Dedecms DedecmsMalicious File Upload

high
8.8
First published (updated )
CVE-2017-17727

Dedecms DedecmsSQL Injection

high
7.5
First published (updated )
CVE-2011-5200

Dedecms DedecmsSQL Injection

high
7.5
First published (updated )
CVE-2009-3806

Company

Resources

Contact

SecAlerts Pty Ltd.
132 Wickham Terrace
Fortitude Valley,
QLD 4006, Australia
info@secalerts.co
By using SecAlerts services, you agree to our services end-user license agreement. This website is safeguarded by reCAPTCHA and governed by the Google Privacy Policy and Terms of Service. All names, logos, and brands of products are owned by their respective owners, and any usage of these names, logos, and brands for identification purposes only does not imply endorsement. If you possess any content that requires removal, please get in touch with us.
© 2024 SecAlerts Pty Ltd.
ABN: 70 645 966 203, ACN: 645 966 203