RSS   Vulnerabilities for 'Dedecms'   RSS

2020-10-22
 
CVE-2020-27533

CWE-79
 

 
A Cross Site Scripting (XSS) issue was discovered in the search feature of DedeCMS v.5.8 that allows malicious users to inject code into web pages, and other users will be affected when viewing web pages.

 
2020-01-06
 
CVE-2015-4553

CWE-434
 

 
A file upload issue exists in DeDeCMS before 5.7-sp1, which allows malicious users getshell.

 
2019-03-24
 
CVE-2019-10014

CWE-284
 

 
In DedeCMS 5.7SP2, member/resetpassword.php allows remote authenticated users to reset the passwords of arbitrary users via a modified id parameter, because the key parameter is not properly validated.

 
2019-02-18
 
CVE-2019-8933

CWE-434
 

 
In DedeCMS 5.7SP2, attackers can upload a .php file to the uploads/ directory (without being blocked by the Web Application Firewall), and then execute this file, via this sequence of steps: visiting the management page, clicking on the template, clicking on Default Template Management, clicking on New Template, and modifying the filename from ../index.html to ../index.php.

 
2019-02-16
 
CVE-2019-8362

CWE-434
 

 
DedeCMS through V5.7SP2 allows arbitrary file upload in dede/album_edit.php or dede/album_add.php, as demonstrated by a dede/album_edit.php?dopost=save&formzip=1 request with a ZIP archive that contains a file such as "1.jpg.php" (because input validation only checks that .jpg, .png, or .gif is present as a substring, and does not otherwise check the file name or content).

 
2019-01-15
 
CVE-2019-6289

CWE-94
 

 
uploads/include/dialog/select_soft.php in DedeCMS V57_UTF8_SP2 allows remote attackers to execute arbitrary PHP code by uploading with a safe file extension and then renaming with a mixed-case variation of the .php extension, as demonstrated by the 1.pHP filename.

 
2018-12-13
 
CVE-2018-20129

CWE-94
 

 
An issue was discovered in DedeCMS V5.7 SP2. uploads/include/dialog/select_images_post.php allows remote attackers to upload and execute arbitrary PHP code via a double extension and a modified ".php" substring, in conjunction with the image/jpeg content type, as demonstrated by the filename=1.jpg.p*hp value.

 
2018-11-07
 
CVE-2018-19061

CWE-89
 

 
DedeCMS 5.7 SP2 has SQL Injection via the dede\co_do.php ids parameter.

 
2018-10-29
 
CVE-2018-18782

CWE-79
 

 
Reflected XSS exists in DedeCMS 5.7 SP2 via the /member/myfriend.php ftype parameter.

 
 
CVE-2018-18781

CWE-79
 

 
DedeCMS 5.7 SP2 allows XSS via the /member/uploads_select.php f or keyword parameter.

 


Copyright 2021, cxsecurity.com

 

Back to Top