CVE-2018-20129

HIGH

DedeCMS V5.7 SP2 - Remote Code Execution via Double Extension and Content Type Spoofing

Title source: llm
STIX 2.1

Description

An issue was discovered in DedeCMS V5.7 SP2. uploads/include/dialog/select_images_post.php allows remote attackers to upload and execute arbitrary PHP code via a double extension and a modified ".php" substring, in conjunction with the image/jpeg content type, as demonstrated by the filename=1.jpg.p*hp value.

References (1)

Core 1
Core References
Exploit, Third Party Advisory x_refsource_misc
http://www.iwantacve.cn/index.php/archives/88/

Scores

CVSS v3 8.8
EPSS 0.6956
EPSS Percentile 98.7%
Attack Vector NETWORK
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H

Details

CWE
CWE-94
Status published
Products (1)
dedecms/dedecms 5.7 sp2
Published Dec 13, 2018
Tracked Since Feb 18, 2026