CVE-2023-2424

Name of the Vulnerable Software and Affected Versions DedeCMS version 5.7.106

Description A critical issue was found, affecting the UpDateMemberModCache function of the file uploads/dede/config.php. This issue leads to unrestricted upload and can be exploited remotely.

Recommendations For DedeCMS version 5.7.106, as a temporary workaround, consider disabling the UpDateMemberModCache function until a patch is available. Restrict access to the uploads/dede/config.php file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.