Vulnerability Details CVE-2017-17731
DedeCMS through 5.7 has SQL Injection via the $_FILES superglobal to plus/recommend.php.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.849
EPSS Ranking 99.3%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 7.5