Metrics
Affected Vendors & Products
Tue, 10 Dec 2024 16:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
CPEs | cpe:2.3:a:dedecms:dedecms:*:*:*:*:*:*:*:* |
Thu, 05 Dec 2024 15:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Dedecms
Dedecms dedecms |
|
CPEs | cpe:2.3:a:dedecms:dedecms:5.7.116:*:*:*:*:*:*:* | |
Vendors & Products |
Dedecms
Dedecms dedecms |
|
Metrics |
ssvc
|
Wed, 04 Dec 2024 22:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A vulnerability classified as problematic was found in DedeCMS 5.7.116. Affected by this vulnerability is an unknown functionality of the file /member/uploads_add.php of the component SWF File Handler. The manipulation of the argument mediatype leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. | |
Title | DedeCMS SWF File uploads_add.php cross site scripting | |
Weaknesses | CWE-79 CWE-94 |
|
References |
| |
Metrics |
cvssV2_0
|
Status: PUBLISHED
Assigner: VulDB
Published: 2024-12-04T22:00:14.645Z
Updated: 2024-12-05T14:52:40.916Z
Reserved: 2024-12-04T16:30:48.958Z
Link: CVE-2024-12181
Updated: 2024-12-05T14:52:35.396Z
Status : Analyzed
Published: 2024-12-04T22:15:22.360
Modified: 2024-12-10T16:29:18.917
Link: CVE-2024-12181
No data.