PT-2018-18906 · Dedecms · Dedecms
Published
2018-04-02
·
Updated
2025-06-03
·
CVE-2018-9175
CVSS v3.1
9.8
Critical
| Vector | AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H |
Name of the Vulnerable Software and Affected Versions
DedeCMS version 5.7
Description
The issue allows remote attackers to execute arbitrary PHP code. This is achieved via the
egroup parameter to the "/uploads/dede/stepselect main.php" API endpoint, as code within the database is accessible to "/uploads/dede/sys cache up.php".Recommendations
For DedeCMS version 5.7, consider restricting access to the
egroup parameter in the "/uploads/dede/stepselect main.php" endpoint until a patch is available. Additionally, limit access to the database code that is accessible to "/uploads/dede/sys cache up.php" to minimize the risk of exploitation.Fix
RCE
Code Injection
Found an issue in the description? Have something to add? Feel free to write us 👾
Weakness Enumeration
Related Identifiers
Affected Products
Dedecms