A hacker could exploit this weakness to upload arbitrary files, conduct a XXE attack, conduct a XSS attack, or obtain sensitive information. Furthermore, it was discovered that DedeCMS V5.7.99 was vulnerable to multiple cross-site scripting vulnerabilities, including problems with the /dede/dekit/common/search.php script. An attacker could leverage these flaws to inject malicious code or obtain sensitive information. DedeCMS V5.7.99 also had multiple cross-site request forgery flaws. An attacker could exploit these vulnerabilities to fool administrators into changing system settings or performing other actions. DedeCMS V5.7.99 was vulnerable to multiple remote code execution flaws. An attacker could exploit these issues to launch a malicious code attack against visitors of the site that runs on the server.
CVSS Measures
DedeCMS V5.7.99 had a CVSS score of 8.8 out of 10, which indicates the website was vulnerable to very critical vulnerabilities.
DedeCMS V5.7.98 to V5.7.99
DedeCMS V5.7.98 had multiple cross-site scripting vulnerabilities, including problems with the /dede/dekit/common/search.php script. These flaws could be exploited by an attacker to inject malicious code or obtain sensitive information; an attacker could also exploit these flaws to launch a malicious code attack against visitors of the site that runs on the server. There was one remote code execution flaw in DedeCMS V5.7.98, which could be exploited by an attacker to launch a malicious code attack against visitors of the site that runs on the server.
Overview of Vulnerability
The vulnerability could be exploited by logged-in users. An attacker with access to the system would only need to send a specially crafted HTTP request to trigger the vulnerability. The attacker would have to know the target's IP address or domain name, and be able to send requests using HTTP POST. The flaw existed in the way that DedeCMS parsed multipart MIME messages, which could result in an infinite loop condition if a malicious message was sent. With this condition, DedeCMS would crash due to being unable to free allocated memory.
Timeline
Published on: 10/12/2022 00:15:00 UTC
Last modified on: 10/13/2022 13:40:00 UTC