A1Natas飞书用户818

**Name of the Vulnerable Software and Affected Versions** DedeBIZ version 6.3.0 **Description** An arbitrary file upload issue in the `/admin/file manage control` component allows attackers to execute arbitrary code by uploading a crafted file. **Recommendations** For DedeBIZ version 6.3.0, consider disabling the file upload functionality in the `/admin/file manage control` component until a patch is available to prevent exploitation.

**Name of the Vulnerable Software and Affected Versions** DedeBIZ version 6.3.0 **Description** The issue is related to an arbitrary file deletion vulnerability. It can be exploited via the `/admin/file manage view` component. **Recommendations** For DedeBIZ version 6.3.0, consider restricting access to the `/admin/file manage view` component until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.