Dedecms

Dedecms

172 Schwachstellen gefunden.

Hinweis: Diese Liste kann unvollständig sein. Daten werden ohne Gewähr im Ursprungsformat bereitgestellt.
4.3

CVE-2024-3145

Exploit
  • EPSS 0.42%
  • Veröffentlicht 02.04.2024 02:15:08
  • Zuletzt bearbeitet 15.01.2025 18:47:20

A vulnerability was found in DedeCMS 5.7. It has been rated as problematic. Affected by this issue is some unknown functionality of the file /src/dede/makehtml_js_action.php. The manipulation leads to cross-site request forgery. The attack may be lau...

4.3

CVE-2024-3144

Exploit
  • EPSS 0.42%
  • Veröffentlicht 02.04.2024 02:15:07
  • Zuletzt bearbeitet 15.01.2025 18:47:12

A vulnerability was found in DedeCMS 5.7. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /src/dede/makehtml_spec.php. The manipulation leads to cross-site request forgery. The attack can be...

4.3

CVE-2024-3143

Exploit
  • EPSS 0.39%
  • Veröffentlicht 02.04.2024 01:15:52
  • Zuletzt bearbeitet 15.01.2025 18:46:59

A vulnerability was found in DedeCMS 5.7. It has been classified as problematic. Affected is an unknown function of the file /src/dede/member_rank.php. The manipulation leads to cross-site request forgery. It is possible to launch the attack remotely...

9.8

CVE-2024-29684

Exploit
  • EPSS 0.57%
  • Veröffentlicht 26.03.2024 14:15:09
  • Zuletzt bearbeitet 01.04.2025 17:48:06

DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /src/dede/makehtml_homepage.php allowing a remote attacker to execute arbitrary code.

4.3

CVE-2024-2822

Exploit
  • EPSS 0.37%
  • Veröffentlicht 22.03.2024 17:15:09
  • Zuletzt bearbeitet 30.09.2025 17:54:47

A vulnerability, which was classified as problematic, was found in DedeCMS 5.7. This affects an unknown part of the file /src/dede/vote_edit.php. The manipulation of the argument aid leads to cross-site request forgery. It is possible to initiate the...

4.3

CVE-2024-2823

Exploit
  • EPSS 0.36%
  • Veröffentlicht 22.03.2024 17:15:09
  • Zuletzt bearbeitet 15.01.2025 18:53:00

A vulnerability has been found in DedeCMS 5.7 and classified as problematic. This vulnerability affects unknown code of the file /src/dede/mda_main.php. The manipulation leads to cross-site request forgery. The attack can be initiated remotely. The e...

4.3

CVE-2024-2820

Exploit
  • EPSS 0.39%
  • Veröffentlicht 22.03.2024 16:15:10
  • Zuletzt bearbeitet 15.01.2025 18:53:10

A vulnerability classified as problematic was found in DedeCMS 5.7. Affected by this vulnerability is an unknown functionality of the file /src/dede/baidunews.php. The manipulation of the argument filename leads to cross-site request forgery. The att...

4.3

CVE-2024-2821

Exploit
  • EPSS 0.4%
  • Veröffentlicht 22.03.2024 16:15:10
  • Zuletzt bearbeitet 29.09.2025 22:01:21

A vulnerability, which was classified as problematic, has been found in DedeCMS 5.7. Affected by this issue is some unknown functionality of the file /src/dede/friendlink_edit.php. The manipulation of the argument id leads to cross-site request forge...

5.4

CVE-2024-28669

Exploit
  • EPSS 0.24%
  • Veröffentlicht 13.03.2024 16:15:30
  • Zuletzt bearbeitet 01.04.2025 13:42:31

DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /dede/freelist_edit.php.

6.1

CVE-2024-28670

Exploit
  • EPSS 0.24%
  • Veröffentlicht 13.03.2024 16:15:30
  • Zuletzt bearbeitet 01.04.2025 13:42:28

DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /dede/freelist_main.php.