777erp/cms

Releases0

Stars1

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-28673 ↗	Mar 13, 2024Wednesday, 13 March 2024, 16:15	8.8 HIGH	—
DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /dede/mychannel_edit.php.
CVE-2024-28676 ↗	Mar 13, 2024Wednesday, 13 March 2024, 16:15	6.1 MEDIUM	—
DedeCMS v5.7 was discovered to contain a cross-site scripting (XSS) vulnerability via /dede/article_edit.php.
CVE-2024-28683 ↗	Mar 13, 2024Wednesday, 13 March 2024, 16:15	6.1 MEDIUM	—
DedeCMS v5.7 was discovered to contain a cross-site scripting (XSS) vulnerability via create file.
CVE-2024-28682 ↗	Mar 13, 2024Wednesday, 13 March 2024, 16:15	6.3 MEDIUM	—
DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /dede/sys_cache_up.php.
CVE-2024-28669 ↗	Mar 13, 2024Wednesday, 13 March 2024, 16:15	5.4 MEDIUM	—
DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /dede/freelist_edit.php.
CVE-2024-28670 ↗	Mar 13, 2024Wednesday, 13 March 2024, 16:15	6.1 MEDIUM	—
DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /dede/freelist_main.php.
CVE-2024-28671 ↗	Mar 13, 2024Wednesday, 13 March 2024, 16:15	8.8 HIGH	—
DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /dede/stepselect_main.php.
CVE-2024-28672 ↗	Mar 13, 2024Wednesday, 13 March 2024, 16:15	5.4 MEDIUM	—
DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /dede/media_edit.php.
CVE-2024-28681 ↗	Mar 13, 2024Wednesday, 13 March 2024, 16:15	6.1 MEDIUM	—
DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /dede/plus_edit.php.
CVE-2024-28680 ↗	Mar 13, 2024Wednesday, 13 March 2024, 16:15	6.1 MEDIUM	—
DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /dede/diy_add.php.
CVE-2024-28679 ↗	Mar 13, 2024Wednesday, 13 March 2024, 16:15	6.1 MEDIUM	—
DedeCMS v5.7 was discovered to contain a cross-site scripting (XSS) vulnerability via Photo Collection.
CVE-2024-28677 ↗	Mar 13, 2024Wednesday, 13 March 2024, 16:15	6.1 MEDIUM	—
DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /dede/article_keywords_main.php.
CVE-2024-28678 ↗	Mar 13, 2024Wednesday, 13 March 2024, 16:15	6.3 MEDIUM	—
DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via the component /dede/article_description_main.php
CVE-2024-28675 ↗	Mar 13, 2024Wednesday, 13 March 2024, 14:15	8.8 HIGH	—
DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /dede/diy_edit.php
CVE-2024-28684 ↗	Mar 13, 2024Wednesday, 13 March 2024, 14:15	8.8 HIGH	—
DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via the component /dede/module_main.php
CVE-2024-28668 ↗	Mar 13, 2024Wednesday, 13 March 2024, 13:15	6.1 MEDIUM	—
DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via the component /dede/mychannel_add.php
CVE-2024-28665 ↗	Mar 13, 2024Wednesday, 13 March 2024, 13:15	8.8 HIGH	—
DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via the component /dede/article_add.php
CVE-2024-28666 ↗	Mar 13, 2024Wednesday, 13 March 2024, 13:15	5.5 MEDIUM	—
DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via the component /dede/media_add.php
CVE-2024-28667 ↗	Mar 13, 2024Wednesday, 13 March 2024, 13:15	6.1 MEDIUM	—
DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via the component /dede/templets_one_edit.php