Versions
5.7.43
5.1
5.7.44
5.7.34
5.3
5.7.77
5.7.1
5.7.23
5.7.25
5.7.106
5.7.58
5.7.20
5.7.62
5.7.114
5.7.111
5.7.50
5.7.47
5.7.10
5.7.74
5.7.17
5.7.86
5.7.30
5.7.84
5.7.36
5.7.66
5.7.60
5.7.52
5.7.87
5.7.24
5.7.67
5.7.42
5.7.61
5.7.16
5.7.28
5.7.80
5.7.73
5.7.56
5.7.37
5.7.22
5.7.15
5.7.4
5.7.18
5.7.33
5.7.69
5.7.68
5.7.40
5.7.13
5.7.53
5.7.65
5.7.78
5.7.38
5.7.41
5.7.49
5.6
5.5
5.7.35
5.7.31
5.7.112-UTF8
5.7.79
5.7.7
5.0
5.7.110
5.7.51
5.7.59
5.7.112
5.4
5.7.0
5.7.19
5.2
5.7.46
5.7.27
5.7.55
5.7.81
5.7.115
5.7.71
5.7.9
5.7.3
5.7.85
5.7.54
5.7.32
5.7.75
5.7.6
5.7.76
5.7.2
5.7.64
5.7.29
5.7.39
5.7.63
5.7.57
5.7.11
5.7.14
5.7.72
5.7.5
5.7
5.7.70
5.7.21
5.7.83
5.7.8
5.7.82
5.7.116
5.7.26
5.7.12
5.7.109
5.7.45
5.7.48
Recent CVEs
CVE-2024-12183
A vulnerability, which was classified as problematic, was found in DedeCMS 5.7.116. This affects the function RemoveXSS of the file /plus/carbuyaction.php of the component HTTP POST Request Handler. The manipulation leads to cross site scripting. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.
CVE-2024-12182
A vulnerability, which was classified as problematic, has been found in DedeCMS 5.7.116. Affected by this issue is some unknown functionality of the file /member/soft_add.php. The manipulation of the argument body leads to cross site scripting. The attack may be launched remotely. The exploit has been disclosed to the public and may be used.
CVE-2024-12181
A vulnerability classified as problematic was found in DedeCMS 5.7.116. Affected by this vulnerability is an unknown functionality of the file /member/uploads_add.php of the component SWF File Handler. The manipulation of the argument mediatype leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.
CVE-2024-12180
A vulnerability classified as problematic has been found in DedeCMS 5.7.116. Affected is an unknown function of the file /member/article_add.php. The manipulation of the argument body leads to cross site scripting. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
CVE-2024-11138
A vulnerability classified as problematic has been found in DedeCMS 5.7.116. This affects an unknown part of the file /dede/uploads/dede/friendlink_add.php. The manipulation of the argument logoimg leads to unrestricted upload. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used.