Dedecms

Dedecms

167 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
8.8

CVE-2024-30965

Exploit
  • EPSS 0.21%
  • Veröffentlicht 02.04.2024 14:15:08
  • Zuletzt bearbeitet 01.04.2025 18:05:47

DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /src/dede/member_scores.php.

5.5

CVE-2024-30946

Exploit
  • EPSS 0.1%
  • Veröffentlicht 02.04.2024 13:15:51
  • Zuletzt bearbeitet 01.04.2025 18:05:53

DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /src/dede/co_do.php.

8.8

CVE-2024-3148

  • EPSS 0.29%
  • Veröffentlicht 02.04.2024 02:15:10
  • Zuletzt bearbeitet 15.01.2025 18:49:15

A vulnerability, which was classified as critical, has been found in DedeCMS 5.7.112. This issue affects some unknown processing of the file dede/makehtml_archives_action.php. The manipulation leads to sql injection. The attack may be initiated remot...

4.3

CVE-2024-3146

Exploit
  • EPSS 0.11%
  • Veröffentlicht 02.04.2024 02:15:09
  • Zuletzt bearbeitet 15.01.2025 18:47:36

A vulnerability classified as problematic has been found in DedeCMS 5.7. This affects an unknown part of the file /src/dede/makehtml_rss_action.php. The manipulation leads to cross-site request forgery. It is possible to initiate the attack remotely....

4.3

CVE-2024-3147

Exploit
  • EPSS 0.1%
  • Veröffentlicht 02.04.2024 02:15:09
  • Zuletzt bearbeitet 15.01.2025 18:47:28

A vulnerability classified as problematic was found in DedeCMS 5.7. This vulnerability affects unknown code of the file /src/dede/makehtml_map.php. The manipulation leads to cross-site request forgery. The attack can be initiated remotely. The exploi...

4.3

CVE-2024-3145

Exploit
  • EPSS 0.1%
  • Veröffentlicht 02.04.2024 02:15:08
  • Zuletzt bearbeitet 15.01.2025 18:47:20

A vulnerability was found in DedeCMS 5.7. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /src/dede/makehtml_js_action.php. The manipulation leads to cross-site request forgery. The attack may be lau...

4.3

CVE-2024-3144

Exploit
  • EPSS 0.1%
  • Veröffentlicht 02.04.2024 02:15:07
  • Zuletzt bearbeitet 15.01.2025 18:47:12

A vulnerability was found in DedeCMS 5.7. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /src/dede/makehtml_spec.php. The manipulation leads to cross-site request forgery. The attack can be...

4.3

CVE-2024-3143

Exploit
  • EPSS 0.08%
  • Veröffentlicht 02.04.2024 01:15:52
  • Zuletzt bearbeitet 15.01.2025 18:46:59

A vulnerability was found in DedeCMS 5.7. It has been classified as problematic. Affected is an unknown function of the file /src/dede/member_rank.php. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely...

9.8

CVE-2024-29684

Exploit
  • EPSS 3.03%
  • Veröffentlicht 26.03.2024 14:15:09
  • Zuletzt bearbeitet 01.04.2025 17:48:06

DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /src/dede/makehtml_homepage.php allowing a remote attacker to execute arbitrary code.

4.3

CVE-2024-2822

Exploit
  • EPSS 0.06%
  • Veröffentlicht 22.03.2024 17:15:09
  • Zuletzt bearbeitet 30.09.2025 17:54:47

A vulnerability, which was classified as problematic, was found in DedeCMS 5.7. This affects an unknown part of the file /src/dede/vote_edit.php. The manipulation of the argument aid leads to cross-site request forgery. It is possible to initiate the...