CVE-2022-44118
CRITICALdedecmdv6 <6.1.9 - RCE
Title source: llmDescription
dedecmdv6 v6.1.9 is vulnerable to Remote Code Execution (RCE) via file_manage_control.php.
Exploits (1)
nomisec
NO CODE
by Athishpranav2003 · poc
https://github.com/Athishpranav2003/CVE-2022-44118-Exploit
Scores
CVSS v3
9.8
EPSS
0.1029
EPSS Percentile
93.2%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Details
Status
published
Products (1)
dedebiz/dedecmsv6
6.1.9
Published
Nov 23, 2022
Tracked Since
Feb 18, 2026