Dedecms Vulnerabilidad

Cronología

El año pasado

Versión

5.7	16
7.5 SP2	10
5.7 SP2	8
5.7SP2	6
5.1	5

Contramedidas

Official Fix	0
Temporary Fix	0
Workaround	0
Unavailable	0
Not Defined	81

Explotabilidad

High	0
Functional	0
Proof-of-Concept	10
Unproven	0
Not Defined	71

Vector de acceso

Not Defined	0
Physical	0
Local	0
Adjacent	11
Network	70

Autenticación

Not Defined	0
High	2
Low	54
None	25

La interacción del usuario

Not Defined	0
Required	32
None	49

CVSSv3 Base

≤1	0
≤2	0
≤3	0
≤4	4
≤5	21
≤6	9
≤7	21
≤8	19
≤9	7
≤10	0

CVSSv3 Temp

≤1	0
≤2	0
≤3	0
≤4	4
≤5	21
≤6	11
≤7	22
≤8	16
≤9	7
≤10	0

VulDB

≤1	0
≤2	0
≤3	1
≤4	20
≤5	14
≤6	10
≤7	24
≤8	12
≤9	0
≤10	0

NVD

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	13
≤7	14
≤8	9
≤9	11
≤10	15

CNA

≤1	0
≤2	0
≤3	0
≤4	0
≤5	2
≤6	2
≤7	3
≤8	0
≤9	0
≤10	0

Proveedor

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Research

≤1	0
≤2	0
≤3	0
≤4	0
≤5	0
≤6	0
≤7	0
≤8	0
≤9	0
≤10	0

Explotar día 0

<1k	22
<2k	42
<5k	17
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Explotar hoy

<1k	68
<2k	13
<5k	0
<10k	0
<25k	0
<50k	0
<100k	0
≥100k	0

Explotar el volumen del mercado

Affected Versions (108): 5.0, 5.1, 5.2, 5.3, 5.4, 5.5, 5.6, 5.7, 5.7 SP2, 5.7.1, 5.7.2, 5.7.3, 5.7.4, 5.7.5, 5.7.6, 5.7.7, 5.7.8, 5.7.9, 5.7.11, 5.7.12, 5.7.13, 5.7.14, 5.7.15, 5.7.16, 5.7.17, 5.7.18, 5.7.19, 5.7.21, 5.7.22, 5.7.23, 5.7.24, 5.7.25, 5.7.26, 5.7.27, 5.7.28, 5.7.29, 5.7.31, 5.7.32, 5.7.33, 5.7.34, 5.7.35, 5.7.36, 5.7.37, 5.7.38, 5.7.39, 5.7.41, 5.7.42, 5.7.43, 5.7.44, 5.7.45, 5.7.46, 5.7.47, 5.7.48, 5.7.49, 5.7.51, 5.7.52, 5.7.53, 5.7.54, 5.7.55, 5.7.56, 5.7.57, 5.7.58, 5.7.59, 5.7.61, 5.7.62, 5.7.63, 5.7.64, 5.7.65, 5.7.66, 5.7.67, 5.7.68, 5.7.69, 5.7.71, 5.7.72, 5.7.73, 5.7.74, 5.7.75, 5.7.76, 5.7.77, 5.7.78, 5.7.79, 5.7.81, 5.7.82, 5.7.83, 5.7.84, 5.7.85, 5.7.86, 5.7.87, 5.7.93, 5.7.94, 5.7.95, 5.7.96, 5.7.97, 5.7.98, 5.7.99, 5.7.101, 5.7.102, 5.7.106, 5.7.107, 5.7.108, 5.7.109, 5.7.111, 5.7SP2, 5.8, 6.1.9, 6.2, 7.5 SP2, V57_UTF8_SP2

Tipo de software: Content Management System

Fecha de publicación	Base	Temp	Vulnerabilidad	0day	Hoy	Exp	Con	CTI	CVE
2023-11-16	4.3	4.2	DedeCMS Backend Management Interface catalog_add.php cross site request forgery	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2023-43275
2023-11-13	3.5	3.4	DedeCMS spec_add.php cross site scripting	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2023-48068
2023-09-29	6.1	5.9	DedeCMS album_add.php AddMyAddon escalada de privilegios	$0-$5k	$0-$5k	Proof-of-Concept	Not Defined	0.12	CVE-2023-5301
2023-09-28	7.1	7.0	DedeCMS baidunews.php escalada de privilegios	$0-$5k	$0-$5k	Not Defined	Not Defined	0.05	CVE-2023-43226
2023-09-16	6.6	6.4	DedeCMS select_templets_post.php Privilege Escalation	$0-$5k	$0-$5k	Proof-of-Concept	Not Defined	0.03	CVE-2023-5022
2023-09-12	7.6	7.6	DedeCMS module_make.php escalada de privilegios	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2023-40784
2023-09-03	7.5	7.3	DedeCMS tags.php sql injection	$0-$5k	$0-$5k	Proof-of-Concept	Not Defined	0.02	CVE-2023-4747
2023-08-25	4.4	4.4	DedeCMS freelist_edit.php cross site scripting	$0-$5k	$0-$5k	Not Defined	Not Defined	0.04	CVE-2023-40877
2023-08-25	4.4	4.4	DedeCMS freelist_add.php cross site scripting	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2023-40876
2023-08-25	4.4	4.4	DedeCMS vote_edit.php cross site scripting	$0-$5k	$0-$5k	Not Defined	Not Defined	0.00	CVE-2023-40875

71 no se muestran más entradas

🔒 Login Required

You need to signup and login to see more of the remaining 71 results.

◂ AnteriorVisión De ConjuntoPróximo ▸

Do you need the next level of professionalism?

Upgrade your account now!

Dedecms Vulnerabilidad

Cronología

El año pasado

Versión

Contramedidas

Explotabilidad

Vector de acceso

Autenticación

La interacción del usuario

C3BM Index

El año pasado

CVSSv3 Base

CVSSv3 Temp

VulDB

NVD

CNA

Proveedor

Research

Explotar día 0

Explotar hoy

Explotar el volumen del mercado

El año pasado

🔴 CTI Ocupaciones

🔒 Login Required

Do you need the next level of professionalism?