CVE-2023-3838

Name of the Vulnerable Software and Affected Versions DedeBIZ version 6.2.10

Description A problematic issue was found in DedeBIZ, affecting an unknown functionality of the file /admin/vote edit.php. This issue leads to cross site scripting and can be launched remotely. The exploit has been disclosed to the public. The vendor was contacted about this disclosure but did not respond.

Recommendations For DedeBIZ version 6.2.10, consider disabling access to the /admin/vote edit.php file as a temporary workaround until a patch is available. Restrict access to this file to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this issue.