CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-0557

A vulnerability, which was classified as problematic, was found in DedeBIZ 6.3.0. This affects an unknown part of the component Website Copyright Setting. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-250725 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 20.0%

CVSS Severity

CVSS v3 Score 2.4

CVSS v2 Score 3.3

References

https://github.com/JTZ-a/SRC/blob/master/DedeBIZ/DedeBIZ%20-%20StoredXSS/README.md
https://vuldb.com/?ctiid.250725
https://vuldb.com/?id.250725
https://github.com/JTZ-a/SRC/blob/master/DedeBIZ/DedeBIZ%20-%20StoredXSS/README.md
https://vuldb.com/?ctiid.250725
https://vuldb.com/?id.250725

Products affected by CVE-2024-0557

Dedebiz » Dedebiz » Version: 6.3.0

cpe:2.3:a:dedebiz:dedebiz:6.3.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-0557

Products

Pricing

Contact Us