CVE-2023-2059

Name of the Vulnerable Software and Affected Versions DedeCMS version 5.7.87

Description A problematic issue affects some unknown functionality of the file uploads/include/dialog/select templets.php. The manipulation leads to path traversal, specifically using '..filedir'. This issue can be exploited remotely.

Recommendations For DedeCMS version 5.7.87, consider restricting access to the select templets.php file in the uploads/include/dialog directory until a patch is available. As a temporary workaround, avoid using the file uploads functionality to minimize the risk of exploitation.