📦 Dedebiz
by Dedebiz
🔍 What is Dedebiz?
Description coming soon...
🛡️ Security Overview
Click on a severity to filter vulnerabilities
⚠️ Known Vulnerabilities
This critical vulnerability in DedeBIZ v6.3.0 allows attackers to upload arbitrary files to the /admin/file_manage_control component, leading to remote code execution. Attackers can gain complete cont...
This Cross-Site Scripting (XSS) vulnerability in DedeBIZ v6.0.3 allows attackers to inject malicious scripts through the search feature, which could lead to session hijacking, credential theft, or web...
DedeBIZ v6.2.11 contains critical remote code execution vulnerabilities in the file management admin interface. Attackers can execute arbitrary code on affected systems by manipulating parameters in t...
This vulnerability allows attackers to upload malicious files to DedeBIZ CMS through the admin interface, potentially leading to remote code execution. It affects DedeBIZ v6.3.0 installations with the...
This vulnerability allows remote attackers to execute arbitrary commands on DedeBIZ systems through command injection in the catalog_add.php file. Attackers can exploit this to gain unauthorized acces...
This CVE describes an SQL injection vulnerability in DedeBIZ content management system. Attackers can manipulate the 'orderby' parameter in /admin/freelist_main.php to execute arbitrary SQL commands r...
This vulnerability allows remote attackers to execute SQL injection attacks against DedeBIZ content management systems through the /admin/templets_one_edit.php file. Attackers can manipulate the 'ids'...
This cross-site scripting (XSS) vulnerability in DedeBIZ v6.3.0 allows attackers to inject malicious scripts into web pages viewed by other users. Attackers can steal session cookies, redirect users t...
This critical vulnerability in DedeBIZ 6.3.0 allows remote attackers to upload arbitrary files without restrictions via the get_mime_type function in the attachment settings component. This affects al...
This critical vulnerability in DedeBIZ 6.3.0 allows remote attackers to upload arbitrary files without restrictions via the admin/file_manage_control.php component. Attackers can exploit this to uploa...