Dedecms: >> Dedecms >> 5.5 Security Vulnerabilities
DedeCMS through V5.7SP2 allows arbitrary file upload in dede/album_edit.php or dede/album_add.php, as demonstrated by a dede/album_edit.php?dopost=save&formzip=1 request with a ZIP archive that contains a file such as "1.jpg.php" (because input validation only checks that .jpg, .png, or .gif is present as a substring, and does not otherwise check the file name or content).
CVSS Score
7.5
EPSS Score
0.002
Published
2019-02-16
DedeCMS through V5.7SP2 allows arbitrary file upload in dede/file_manage_control.php via a dede/file_manage_view.php?fmdo=upload request with an upfile1 parameter, as demonstrated by uploading a .php file.
CVSS Score
9.8
EPSS Score
0.006
Published
2018-06-08
DedeCMS through 5.7SP2 allows arbitrary file write in dede/file_manage_control.php via a dede/file_manage_view.php?fmdo=newfile request with name and str parameters, as demonstrated by writing to a new .php file.
CVSS Score
7.5
EPSS Score
0.002
Published
2018-06-08
DedeCMS through 5.6 allows arbitrary file upload and PHP code execution by embedding the PHP code in a .jpg file, which is used in the templet parameter to member/article_edit.php.
CVSS Score
8.8
EPSS Score
0.007
Published
2017-12-18
DedeCMS through 5.7 has SQL Injection via the logo parameter to plus/flink_add.php.
CVSS Score
9.8
EPSS Score
0.003
Published
2017-12-18
DedeCMS through 5.7 has SQL Injection via the $_FILES superglobal to plus/recommend.php.
CVSS Score
9.8
EPSS Score
0.864
Published
2017-12-18
include/userlogin.class.php in DeDeCMS 5.5 GBK, when session.auto_start is enabled, allows remote attackers to bypass authentication and gain administrative access via a value of 1 for the _SESSION[dede_admin_id] parameter, as demonstrated by a request to uploads/include/dialog/select_soft_post.php.
CVSS Score
6.8
EPSS Score
0.001
Published
2010-03-24
Page 3