Vulnerabilities > Dedebiz
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-15 | CVE-2024-0557 | Cross-site Scripting vulnerability in Dedebiz 6.3.0 A vulnerability, which was classified as problematic, was found in DedeBIZ 6.3.0. | 5.4 |
| 2024-01-15 | CVE-2024-0558 | SQL Injection vulnerability in Dedebiz 6.3.0 A vulnerability has been found in DedeBIZ 6.3.0 and classified as critical. | 7.2 |
| 2023-12-30 | CVE-2023-7181 | Unrestricted Upload of File with Dangerous Type vulnerability in Dedebiz A vulnerability was found in Muyun DedeBIZ up to 6.2.12 and classified as critical. | 7.2 |
| 2023-12-14 | CVE-2023-31546 | Cross-site Scripting vulnerability in Dedebiz 6.0.3 Cross Site Scripting (XSS) vulnerability in DedeBIZ v6.0.3 allows attackers to run arbitrary code via the search feature. | 9.6 |
| 2023-12-13 | CVE-2023-6755 | SQL Injection vulnerability in Dedebiz 6.2 A vulnerability was found in DedeBIZ 6.2 and classified as critical. | 7.2 |
| 2023-09-29 | CVE-2023-5268 | SQL Injection vulnerability in Dedebiz 6.2 A vulnerability was found in DedeBIZ 6.2 and classified as critical. | 7.2 |
| 2023-09-29 | CVE-2023-5266 | SQL Injection vulnerability in Dedebiz 6.2 A vulnerability, which was classified as critical, was found in DedeBIZ 6.2. | 8.8 |
| 2023-09-27 | CVE-2023-43232 | Cross-site Scripting vulnerability in Dedebiz 6.2.11 A stored cross-site scripting (XSS) vulnerability in the Website column management function of DedeBIZ v6.2.11 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the title parameter. | 5.4 |
| 2023-09-27 | CVE-2023-43234 | Unspecified vulnerability in Dedebiz 6.2.11 DedeBIZ v6.2.11 was discovered to contain multiple remote code execution (RCE) vulnerabilities at /admin/file_manage_control.php via the $activepath and $filename parameters. | 9.8 |
| 2023-08-05 | CVE-2023-4170 | Cross-site Scripting vulnerability in Dedebiz 6.2.10 A vulnerability was found in DedeBIZ 6.2.10. | 4.8 |