Approved changes feed: RSS · Atom
cpe:2.3:a:n/a:dedecms:*:*:*:*:*:*:*:*
part: a version: * update: *
| Vendor | N/A (22f567d3-1203-528c-8f0e-3eb9c2f6ca78) |
|---|---|
| Product | Dedecms (149bf652-ed02-51f8-a238-5486d5d05e7b) |
| Edition | * |
| Language | * |
| Software edition | * |
| Target software | * |
| Target hardware | * |
| Other | * |
| Notes | Imported from gcve-enriched-dumps CVE data |
PURL mappings
| PURL | Source | Last updated |
|---|---|---|
| No PURL mappings for this CPE yet. | ||
Vulnerability references
| Identifier | cpeApplicability | Submitted | db.gcve.eu details | Rationale |
|---|---|---|---|---|
CVE:CVE-2025-6335 |
vulnerable | 2026-06-08 07:43:14.858649 |
DedeCMS Template dedetag.class.php command injection
MEDIUM (4.7)
A vulnerability was found in DedeCMS up to 5.7.2 and classified as critical. This issue affects some unknown processing of the file /include/dedetag.class.php of the component Template Handler. The manipulation of the argument notes leads to command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.
Published: 2025-06-20T11:00:19.524Z
Updated: 2025-06-20T12:25:00.465Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2025-5137 |
vulnerable | 2026-06-08 07:35:24.228849 |
DedeCMS Incomplete Fix CVE-2018-9175 sys_verifies.php code injection
MEDIUM (4.7)
A vulnerability was found in DedeCMS 5.7.117. It has been classified as critical. Affected is an unknown function of the file dede/sys_verifies.php?action=getfiles of the component Incomplete Fix CVE-2018-9175. The manipulation of the argument refiles leads to code injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.
Published: 2025-05-25T00:00:10.371Z
Updated: 2025-06-03T09:50:24.612Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-9076 |
vulnerable | 2026-06-08 07:00:26.613147 |
DedeCMS article_string_mix.php os command injection
MEDIUM (4.7)
A vulnerability was found in DedeCMS up to 5.7.115. It has been rated as critical. This issue affects some unknown processing of the file /dede/article_string_mix.php. The manipulation leads to os command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2024-09-22T00:00:10.642Z
Updated: 2024-11-28T06:08:58.720Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-6940 |
vulnerable | 2026-06-08 06:58:20.807637 |
DedeCMS article_template_rand.php code injection
MEDIUM (4.7)
A vulnerability was found in DedeCMS 5.7.114. It has been classified as critical. This affects an unknown part of the file article_template_rand.php. The manipulation leads to code injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-271995. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2024-07-21T05:31:07.684Z
Updated: 2024-08-01T21:45:38.431Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-4790 |
vulnerable | 2026-06-08 06:50:18.643408 |
DedeCMS path traversal
MEDIUM (4.3)
A vulnerability classified as problematic has been found in DedeCMS 5.7.114. This affects an unknown part of the file /sys_verifies.php?action=view. The manipulation of the argument filename with the input ../../../../../etc/passwd leads to path traversal: '../filedir'. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-263889 was assigned to this vulnerability. NOTE: The vendor was contacted early about this disclosure but did not respond in any way.
Published: 2024-05-11T23:31:03.662Z
Updated: 2024-08-01T20:55:09.994Z |
Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-4594 |
vulnerable | 2026-06-08 06:50:18.217108 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-4593 |
vulnerable | 2026-06-08 06:50:18.216583 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-4592 |
vulnerable | 2026-06-08 06:50:18.216134 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-4591 |
vulnerable | 2026-06-08 06:50:18.215640 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-4590 |
vulnerable | 2026-06-08 06:50:18.215054 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-4589 |
vulnerable | 2026-06-08 06:50:18.214655 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-4588 |
vulnerable | 2026-06-08 06:50:18.214105 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-4587 |
vulnerable | 2026-06-08 06:50:18.213498 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-4586 |
vulnerable | 2026-06-08 06:50:18.212970 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-4585 |
vulnerable | 2026-06-08 06:50:18.211205 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-3686 |
vulnerable | 2026-06-08 06:43:51.214876 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-3685 |
vulnerable | 2026-06-08 06:43:51.213243 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-3148 |
vulnerable | 2026-06-08 06:41:52.576404 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-3147 |
vulnerable | 2026-06-08 06:41:52.576015 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-3146 |
vulnerable | 2026-06-08 06:41:52.575425 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-3145 |
vulnerable | 2026-06-08 06:41:52.574944 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-3144 |
vulnerable | 2026-06-08 06:41:52.574355 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-3143 |
vulnerable | 2026-06-08 06:41:52.571567 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-2823 |
vulnerable | 2026-06-08 06:35:27.443698 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-2822 |
vulnerable | 2026-06-08 06:35:27.443238 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-2821 |
vulnerable | 2026-06-08 06:35:27.442582 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-2820 |
vulnerable | 2026-06-08 06:35:27.440645 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-12183 |
vulnerable | 2026-06-08 06:23:51.404946 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-12182 |
vulnerable | 2026-06-08 06:23:51.404303 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-12181 |
vulnerable | 2026-06-08 06:23:51.403682 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-12180 |
vulnerable | 2026-06-08 06:23:51.403022 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2024-11138 |
vulnerable | 2026-06-08 06:23:48.857504 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-7212 |
vulnerable | 2026-06-08 06:21:57.304752 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-5301 |
vulnerable | 2026-06-08 06:19:43.125179 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-5022 |
vulnerable | 2026-06-08 06:19:40.711717 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-4747 |
vulnerable | 2026-06-08 06:16:14.487986 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-3578 |
vulnerable | 2026-06-08 06:09:39.913709 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-2928 |
vulnerable | 2026-06-08 06:02:43.667272 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-2424 |
vulnerable | 2026-06-08 06:02:42.285451 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-2059 |
vulnerable | 2026-06-08 06:02:41.334625 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
CVE:CVE-2023-2056 |
vulnerable | 2026-06-08 06:02:41.327935 | db.gcve.eu details were skipped to keep the page responsive. | Imported from gcve-enriched-dumps CVE data |
Contribute
You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.