CVE-2024-9076 | DedeCMS up to 5.7.115 article_string_mix.php os command injection

Posted by Angelo Barbosa | Sep 21, 2024 | CVE

A vulnerability was found in DedeCMS up to 5.7.115. It has been rated as critical. This issue affects some unknown processing of the file article_string_mix.php. The manipulation leads to os command injection.

The identification of this vulnerability is CVE-2024-9076. The attack may be initiated remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-9076 | DedeCMS up to 5.7.115 article_string_mix.php os command injection

Related Posts

CVE-2024-27782 | Fortinet FortiAIOps 2.0.0 Requests session expiration (FG-IR-24-069)

CVE-2024-5991 | wolfSSL up to 5.7.0 MatchDomainName out-of-bounds

CVE-2023-43516 | Qualcomm WSA8835 Message memory corruption

CVE-2024-24255 | PX4 Autopilot up to 1.14 Mission geofence.cpp mission_feasibility_checker.cpp race condition