Vulnerabilities > Dedebiz
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-13 | CVE-2023-6755 | SQL Injection vulnerability in Dedebiz 6.2 A vulnerability was found in DedeBIZ 6.2 and classified as critical. | 7.2 |
| 2023-09-29 | CVE-2023-5268 | SQL Injection vulnerability in Dedebiz 6.2 A vulnerability was found in DedeBIZ 6.2 and classified as critical. | 7.2 |
| 2023-09-29 | CVE-2023-5266 | SQL Injection vulnerability in Dedebiz 6.2 A vulnerability, which was classified as critical, was found in DedeBIZ 6.2. | 8.8 |
| 2023-09-27 | CVE-2023-43232 | Cross-site Scripting vulnerability in Dedebiz 6.2.11 A stored cross-site scripting (XSS) vulnerability in the Website column management function of DedeBIZ v6.2.11 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the title parameter. | 5.4 |
| 2023-09-27 | CVE-2023-43234 | Unspecified vulnerability in Dedebiz 6.2.11 DedeBIZ v6.2.11 was discovered to contain multiple remote code execution (RCE) vulnerabilities at /admin/file_manage_control.php via the $activepath and $filename parameters. | 9.8 |
| 2023-08-05 | CVE-2023-4170 | Cross-site Scripting vulnerability in Dedebiz 6.2.10 A vulnerability was found in DedeBIZ 6.2.10. | 4.8 |
| 2023-07-23 | CVE-2023-3838 | Cross-site Scripting vulnerability in Dedebiz 6.2.10 A vulnerability classified as problematic was found in DedeBIZ 6.2.10. | 4.8 |
| 2023-07-23 | CVE-2023-3839 | SQL Injection vulnerability in Dedebiz 6.2.10 A vulnerability, which was classified as problematic, has been found in DedeBIZ 6.2.10. | 7.2 |
| 2023-07-22 | CVE-2023-3837 | Cross-site Scripting vulnerability in Dedebiz 6.2.10 A vulnerability classified as problematic has been found in DedeBIZ 6.2.10. | 4.8 |
| 2022-11-23 | CVE-2022-43196 | Unspecified vulnerability in Dedebiz Dedecmsv6 6.1.9 dedecmdv6 v6.1.9 is vulnerable to Arbitrary file deletion via file_manage_control.php. | 9.1 |