Security Advisory

CVE-2025-5137

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-05-25 00:00:10

Last updated 2025-06-03 09:50:24

Assigner VulDB

State PUBLISHED

Description

A vulnerability was found in DedeCMS 5.7.117. It has been classified as critical. Affected is an unknown function of the file dede/sys_verifies.php?action=getfiles of the component Incomplete Fix CVE-2018-9175. The manipulation of the argument refiles leads to code injection. It is possible to launch the attack remotely. The exploit has been disclosed to the public and may be used.

← Browse all CVEs View on cve.org ↗