Known Vulnerabilities for DedeCMS by Na
Listed below are 8 of the newest known vulnerabilities associated with "DedeCMS" by "Na".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-38615 json | DedeCMS V5.7.118 is vulnerable to Command Execution in file_manage_control.php. | Not Provided | 2026-06-09 | 2026-06-10 |
| CVE-2026-15533 json | A security flaw has been discovered in DedeCMS 5.7.118. Impacted is an unknown function of the file /plus/search.php of the c... | Not Provided | 2026-07-13 | 2026-07-13 |
| CVE-2026-10608 json | A security flaw has been discovered in DedeCMS 5.7.88. This affects the function RemoveXSS of the file /plus/carbuyaction.php... | Not Provided | 2026-06-02 | 2026-06-03 |
| CVE-2026-10607 json | A vulnerability was identified in DedeCMS 5.7.88. The impacted element is the function dede_htmlspecialchars of the file /plu... | Not Provided | 2026-06-02 | 2026-06-03 |
| CVE-2026-10606 json | A vulnerability was determined in DedeCMS 5.7.88. The affected element is the function TrimMsg of the file /plus/feedback.php... | Not Provided | 2026-06-02 | 2026-06-02 |
| CVE-2026-10581 json | A flaw has been found in DedeCMS 5.7.88. Affected by this vulnerability is the function base64_decode of the file /plus/downl... | Not Provided | 2026-06-02 | 2026-06-02 |
| CVE-2023-49494 json | DedeCMS v5.7.111 was discovered to contain a reflective cross-site scripting (XSS) vulnerability via the component select_med... | Not Provided | 2023-12-11 | 2026-07-09 |
| CVE-2023-34842 json | Remote Code Execution vulnerability in DedeCMS through 5.7.109 allows remote attackers to run arbitrary code via crafted POST... | Not Provided | 2023-07-31 | 2026-07-09 |