Home/Product/dedebiz
Product

dedebiz

31 known vulnerabilities across versions
Vulnerabilities are listed by affected version. Select any CVE for the full briefing and its intelligence graph.
CVE-2025-14648
<= 6.5.9
A security vulnerability has been detected in DedeBIZ up to 6.5.9. Affected by this vulnerability is an unknown functionality of t
4.7MEDIUM
 CVE-2025-12927
<= 6.3.2
A security vulnerability has been detected in DedeBIZ up to 6.3.2. The impacted element is an unknown function of the file /admin/
4.7MEDIUM
 CVE-2025-12861
<= 6.3.2
A vulnerability was determined in DedeBIZ up to 6.3.2. Affected by this vulnerability is an unknown functionality of the file /adm
4.7MEDIUM
 CVE-2025-12860
<= 6.3.2
A vulnerability was found in DedeBIZ up to 6.3.2. Affected is an unknown function of the file /admin/freelist_main.php. The manipu
4.7MEDIUM
 CVE-2025-12859
<= 6.3.2
A vulnerability has been found in DedeBIZ up to 6.3.2. This impacts an unknown function of the file /admin/templets_one_edit.php.
4.7MEDIUM
 CVE-2024-52771
all versions
DedeBIZ v6.3.0 was discovered to contain an arbitrary file deletion vulnerability via the component /admin/file_manage_view.
9.1CRITICAL
 CVE-2024-52770
all versions
An arbitrary file upload vulnerability in the component /admin/file_manage_control of DedeBIZ v6.3.0 allows attackers to execute a
9.8CRITICAL
 CVE-2024-52769
all versions
An arbitrary file upload vulnerability in the component /admin/friendlink_edit of DedeBIZ v6.3.0 allows attackers to execute arbit
7.2HIGH
 CVE-2024-44717
all versions
A cross-site scripting (XSS) vulnerability in DedeBIZ v6.3.0 allows attackers to execute arbitrary web scripts or HTML via a craft
6.1MEDIUM
 CVE-2024-44716
all versions
A cross-site scripting (XSS) vulnerability in DedeBIZ v6.3.0 allows attackers to execute arbitrary web scripts or HTML via a craft
6.1MEDIUM
 CVE-2024-7906
all versions
A vulnerability classified as critical was found in DedeBIZ 6.3.0. This vulnerability affects the function get_mime_type of the fi
6.3MEDIUM
 CVE-2024-7905
all versions
A vulnerability classified as critical has been found in DedeBIZ 6.3.0. This affects the function AdminUpload of the file admin/ar
6.3MEDIUM
 CVE-2024-7904
all versions
A vulnerability was found in DedeBIZ 6.3.0. It has been rated as critical. Affected by this issue is some unknown functionality of
6.3MEDIUM
 CVE-2024-7903
all versions
A vulnerability was found in DedeBIZ 6.3.0. It has been declared as critical. Affected by this vulnerability is an unknown functio
6.3MEDIUM
 CVE-2024-0558
all versions
A vulnerability has been found in DedeBIZ 6.3.0 and classified as critical. This vulnerability affects unknown code of the file /a
4.7MEDIUM
 CVE-2024-0557
all versions
A vulnerability, which was classified as problematic, was found in DedeBIZ 6.3.0. This affects an unknown part of the component We
2.4LOW
 CVE-2023-7181
<= 6.2.12
A vulnerability was found in Muyun DedeBIZ up to 6.2.12 and classified as critical. Affected by this issue is some unknown functio
4.7MEDIUM
 CVE-2023-31546
all versions
Cross Site Scripting (XSS) vulnerability in DedeBIZ v6.0.3 allows attackers to run arbitrary code via the search feature.
9.6CRITICAL
 CVE-2023-6755
all versions
A vulnerability was found in DedeBIZ 6.2 and classified as critical. This issue affects some unknown processing of the file /src/a
4.7MEDIUM
 CVE-2023-5268
all versions
A vulnerability was found in DedeBIZ 6.2 and classified as critical. This issue affects some unknown processing of the file /src/a
6.3MEDIUM
 CVE-2023-5266
all versions
A vulnerability, which was classified as critical, was found in DedeBIZ 6.2. This affects an unknown part of the file /src/admin/t
6.3MEDIUM
 CVE-2023-43234
all versions
DedeBIZ v6.2.11 was discovered to contain multiple remote code execution (RCE) vulnerabilities at /admin/file_manage_control.php v
9.8CRITICAL
 CVE-2023-43232
all versions
A stored cross-site scripting (XSS) vulnerability in the Website column management function of DedeBIZ v6.2.11 allows attackers to
5.4MEDIUM
 CVE-2023-4170
all versions
A vulnerability was found in DedeBIZ 6.2.10. It has been rated as problematic. Affected by this issue is some unknown functionalit
3.5LOW
 CVE-2023-3839
all versions
A vulnerability, which was classified as problematic, has been found in DedeBIZ 6.2.10. Affected by this issue is some unknown fun
4.1MEDIUM
 CVE-2023-3838
all versions
A vulnerability classified as problematic was found in DedeBIZ 6.2.10. Affected by this vulnerability is an unknown functionality
2.4LOW
 CVE-2023-3837
all versions
A vulnerability classified as problematic has been found in DedeBIZ 6.2.10. Affected is an unknown function of the file /admin/sys
2.4LOW
 CVE-2022-44120
all versions
dedecmdv6 6.1.9 is vulnerable to SQL Injection. via sys_sql_query.php.
9.8CRITICAL
 CVE-2022-44118
all versions
dedecmdv6 v6.1.9 is vulnerable to Remote Code Execution (RCE) via file_manage_control.php.
9.8CRITICAL
 CVE-2022-43196
all versions
dedecmdv6 v6.1.9 is vulnerable to Arbitrary file deletion via file_manage_control.php.
9.1CRITICAL
 CVE-2022-36215
all versions
DedeBIZ v6 was discovered to contain a remote code execution vulnerability in sys_info.php.
7.2HIGH
SOC and Response
CVE triage
Stack monitoring
Am I affected
IOC triage
KEV catalog
Recently exploited
Daily brief
Change tracking
Detection Engineering
Coverage workspace
Detection coverage
Coverage check
Telemetry ceiling
SIEM query builder
Sigma rules
SIEM rules
YARA rules
Network rules
D3FEND
Threat Hunting
Threat actors
ATT&CK techniques
Attack paths
Indicators
Atomic tests
Red Team and Pentest
Exploitability triage
Recon pack
Attack paths
CAPEC patterns
Adversary emulation
Compliance and GRC
Framework mapping
Control assessment
Audit view
Coverage report
Atlas Search Threat actors Techniques Tools & malware CWE CAPEC KEV catalog Package vulns
About All capabilities Pricing API docs Live status Privacy policy Terms of service
threatengine.sh