CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2024-52770

An arbitrary file upload vulnerability in the component /admin/file_manage_control of DedeBIZ v6.3.0 allows attackers to execute arbitrary code via uploading a crafted file.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 59.5%

CVSS Severity

CVSS v3 Score 9.8

References

https://co-a1natas.feishu.cn/docx/Zsd9dnGUvoBW6tx0G5fcVx6vnBb
https://github.com/DedeBIZ/DedeV6/

Products affected by CVE-2024-52770

Dedebiz » Dedebiz » Version: 6.3.0

cpe:2.3:a:dedebiz:dedebiz:6.3.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2024-52770

Products

Pricing

Contact Us