Dedecms

Dedecms

172 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2024-4591

Exploit
  • EPSS 0.43%
  • Veröffentlicht 07.05.2024 14:15:11
  • Zuletzt bearbeitet 15.01.2025 18:54:36

A vulnerability classified as problematic has been found in DedeCMS 5.7. This affects an unknown part of the file /src/dede/sys_group_add.php. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely. The e...

4.3

CVE-2024-4592

Exploit
  • EPSS 0.43%
  • Veröffentlicht 07.05.2024 14:15:11
  • Zuletzt bearbeitet 15.01.2025 18:54:14

A vulnerability classified as problematic was found in DedeCMS 5.7. This vulnerability affects unknown code of the file /src/dede/sys_group_edit.php. The manipulation leads to cross-site request forgery. The attack can be initiated remotely. The expl...

4.3

CVE-2024-4593

Exploit
  • EPSS 0.43%
  • Veröffentlicht 07.05.2024 14:15:11
  • Zuletzt bearbeitet 15.01.2025 18:54:03

A vulnerability, which was classified as problematic, has been found in DedeCMS 5.7. This issue affects some unknown processing of the file /src/dede/sys_multiserv.php. The manipulation leads to cross-site request forgery. The attack may be initiated...

4.3

CVE-2024-4587

Exploit
  • EPSS 0.42%
  • Veröffentlicht 07.05.2024 13:15:49
  • Zuletzt bearbeitet 15.01.2025 18:50:05

A vulnerability was found in DedeCMS 5.7 and classified as problematic. This issue affects some unknown processing of the file /src/dede/tpl.php. The manipulation leads to cross-site request forgery. The attack may be initiated remotely. The exploit ...

4.3

CVE-2024-4588

Exploit
  • EPSS 0.42%
  • Veröffentlicht 07.05.2024 13:15:49
  • Zuletzt bearbeitet 15.01.2025 18:50:28

A vulnerability was found in DedeCMS 5.7. It has been classified as problematic. Affected is an unknown function of the file /src/dede/mytag_add.php. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely. ...

4.3

CVE-2024-4589

Exploit
  • EPSS 0.42%
  • Veröffentlicht 07.05.2024 13:15:49
  • Zuletzt bearbeitet 15.01.2025 18:50:39

A vulnerability was found in DedeCMS 5.7. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /src/dede/mytag_edit.php. The manipulation leads to cross-site request forgery. The attack can be la...

4.3

CVE-2024-4586

Exploit
  • EPSS 0.42%
  • Veröffentlicht 07.05.2024 13:15:48
  • Zuletzt bearbeitet 15.01.2025 18:50:18

A vulnerability has been found in DedeCMS 5.7 and classified as problematic. This vulnerability affects unknown code of the file /src/dede/shops_delivery.php. The manipulation leads to cross-site request forgery. The attack can be initiated remotely....

4.3

CVE-2024-4585

Exploit
  • EPSS 0.43%
  • Veröffentlicht 07.05.2024 12:15:10
  • Zuletzt bearbeitet 15.01.2025 18:49:55

A vulnerability, which was classified as problematic, was found in DedeCMS 5.7. This affects an unknown part of the file /src/dede/member_type.php. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely. ...

9.1

CVE-2024-33749

Exploit
  • EPSS 0.65%
  • Veröffentlicht 06.05.2024 13:15:49
  • Zuletzt bearbeitet 01.04.2025 18:05:32

DedeCMS V5.7.114 is vulnerable to deletion of any file via mail_file_manage.php.

6.1

CVE-2024-33371

Exploit
  • EPSS 0.46%
  • Veröffentlicht 30.04.2024 20:15:08
  • Zuletzt bearbeitet 01.04.2025 15:15:36

Cross Site Scripting vulnerability in DedeCMS v.5.7.113 allows a remote attacker to execute arbitrary code via the typeid parameter in the makehtml_list_action.php component.