A vulnerability has been found in DedeCMS 5.7.118 and classified as critical. Impacted is an unknown function of the file /plus/search.php of the component Column Management. Performing a manipulation of the argument Column Name results in code injection.
This vulnerability is reported as CVE-2026-15533. The attack is possible to be carried out remotely. Moreover, an exploit is present.