zchuanwen

2 exploits Active since Apr 2024
CVE-2024-33401 GITEE MEDIUM
dedecms 5.7.113 - Cross-Site Scripting via mnum Parameter
Cross Site Scripting vulnerability in DedeCMS v.5.7.113 allows a remote attacker to run arbitrary code via the mnum parameter.
CVSS 4.4
CVE-2024-33371 GITEE MEDIUM
dedecms 5.7.113 - Cross-Site Scripting via typeid Parameter in makehtml_list_action.php
Cross Site Scripting vulnerability in DedeCMS v.5.7.113 allows a remote attacker to execute arbitrary code via the typeid parameter in the makehtml_list_action.php component.
CVSS 6.1