Sleepyvv

**Name of the Vulnerable Software and Affected Versions** DedeCMS versions up to 5.7.108 **Description** The issue concerns a problem where an attacker can execute malicious scripts. This is possible due to a flaw in the `sys info.php` file, specifically through the parameters `edit cfg powerby` and `edit cfg beian`. **Recommendations** For DedeCMS versions up to 5.7.108, update to a version that contains a fix for this issue. At the moment, there is no information about a newer version that contains a fix for this vulnerability. As a temporary workaround, consider restricting access to the `sys info.php` file and avoiding the use of the parameters `edit cfg powerby` and `edit cfg beian` until the issue is resolved.