CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-52769

An arbitrary file upload vulnerability in the component /admin/friendlink_edit of DedeBIZ v6.3.0 allows attackers to execute arbitrary code via uploading a crafted file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.002

EPSS Ranking 40.6%

CVSS Severity

CVSS v3 Score 7.2

References

https://co-a1natas.feishu.cn/docx/Zsd9dnGUvoBW6tx0G5fcVx6vnBb
https://github.com/DedeBIZ/DedeV6/

Products affected by CVE-2024-52769

Dedebiz » Dedebiz » Version: 6.3.0

cpe:2.3:a:dedebiz:dedebiz:6.3.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-52769

Products

Pricing

Contact Us