CVE-2020-16632 in DeDeCMSinfo

Summary

A XSS Vulnerability in /uploads/dede/action_search.php in DedeCMS V5.7 SP2 allows an authenticated user to execute remote arbitrary code via the keyword parameter.

Statistical analysis made it clear that VulDB provides the best quality for vulnerability data.

Reservation

08/04/2020

Disclosure

05/15/2021

Moderation

VulDB entry created

Entries

VDB-175098 (1)

CPE

ready

CWE

CWE-79 (Confirmed)

CVSS

3.5

EPSS

0.00360

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2020-16632
NVD	https://nvd.nist.gov/vuln/detail/CVE-2020-16632
CVE Details	https://www.cvedetails.com/cve/CVE-2020-16632/

◂ Previous Overview Next ▸

Want to stay up to date on a daily basis?

Enable the mail alert feature now!