Skip to main content

Dedecmsv6

4 CVEs product

Monthly

CVE-2022-44120 CRITICAL Act Now

dedecmdv6 6.1.9 is vulnerable to SQL Injection. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

PHP SQLi Dedecmsv6
NVD GitHub
CVSS 3.1
9.8
EPSS
0.7%
CVE-2022-44118 CRITICAL Act Now

dedecmdv6 v6.1.9 is vulnerable to Remote Code Execution (RCE) via file_manage_control.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE PHP Dedecmsv6
NVD GitHub
CVSS 3.1
9.8
EPSS
1.6%
CVE-2022-43196 CRITICAL Act Now

dedecmdv6 v6.1.9 is vulnerable to Arbitrary file deletion via file_manage_control.php. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure PHP Dedecmsv6
NVD GitHub
CVSS 3.1
9.1
EPSS
0.7%
CVE-2022-36215 HIGH POC This Week

DedeBIZ v6 was discovered to contain a remote code execution vulnerability in sys_info.php. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE PHP Dedecmsv6
NVD GitHub
CVSS 3.1
7.2
EPSS
1.7%
EPSS 1% CVSS 9.8
CRITICAL Act Now

dedecmdv6 6.1.9 is vulnerable to SQL Injection. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

PHP SQLi Dedecmsv6
NVD GitHub
EPSS 2% CVSS 9.8
CRITICAL Act Now

dedecmdv6 v6.1.9 is vulnerable to Remote Code Execution (RCE) via file_manage_control.php. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

RCE PHP Dedecmsv6
NVD GitHub
EPSS 1% CVSS 9.1
CRITICAL Act Now

dedecmdv6 v6.1.9 is vulnerable to Arbitrary file deletion via file_manage_control.php. Rated critical severity (CVSS 9.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Information Disclosure PHP Dedecmsv6
NVD GitHub
EPSS 2% CVSS 7.2
HIGH POC This Week

DedeBIZ v6 was discovered to contain a remote code execution vulnerability in sys_info.php. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE PHP Dedecmsv6
NVD GitHub

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy