| Title | Shanghai Zhuozhuo Network Technology Co. DedeCMS <=V5.7.118 Arbitrary File Deletion |
|---|
| Description | DedeCMS ≤ 5.7.118 has an arbitrary file deletion vulnerability in upload.php in the backend. Due to insecure directory traversal detection, an attacker can perform arbitrary file deletion attacks on Windows servers running DedeCMS after obtaining backend administrator privileges. |
|---|
| Source | ⚠️ https://gist.github.com/0psPwn/10c43912adee9bfe2ff4fec947d4ee5a |
|---|
| User | Lin0ps (UID 95491) |
|---|
| Submission | 03/18/2026 12:53 (25 days ago) |
|---|
| Moderation | 04/04/2026 08:54 (17 days later) |
|---|
| Status | Duplicate |
|---|
| VulDB entry | 200849 [DedeCMS 5.7.93 upload.php delete unrestricted upload] |
|---|
| Points | 0 |
|---|