CVE-2025-6335

MEDIUM

dedecms < 5.7.2 - Remote Command Injection via Template Handler

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2025-6335. PoCs published by jujubooom.

AI-analyzed exploit summary This PoC demonstrates a template injection vulnerability in dedeCMS 5.7 sp2, allowing remote command execution via a crafted request to `/dede/co_get_corule.php`. The exploit leverages improper input validation in the `dedetag.class.php` file to inject arbitrary commands.

Description

A vulnerability was found in DedeCMS up to 5.7.2 and classified as critical. This issue affects some unknown processing of the file /include/dedetag.class.php of the component Template Handler. The manipulation of the argument notes leads to command injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Exploits (1)

nomisec WORKING POC 6 stars

by jujubooom · poc

https://github.com/jujubooom/CVE-2025-6335

View Code ZIP pw:eip

This PoC demonstrates a template injection vulnerability in dedeCMS 5.7 sp2, allowing remote command execution via a crafted request to `/dede/co_get_corule.php`. The exploit leverages improper input validation in the `dedetag.class.php` file to inject arbitrary commands.

Classification

Working Poc 90%

Attack Type

Rce

Complexity

Trivial

Reliability

Reliable

Target: dedeCMS < 5.7.2

Auth required

Prerequisites: Access to the admin panel with credentials (default: admin/admin) · Target running dedeCMS < 5.7.2

MITRE ATT&CK

T1203 - Exploitation for Client Execution T1190 - Exploit Public-Facing Application

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (4)

Core 4

Core References

Third Party Advisory, VDB Entry vdb-entry technical-description

https://vuldb.com/?id.313331

Permissions Required, VDB Entry signature permissions-required

https://vuldb.com/?ctiid.313331

Third Party Advisory, VDB Entry third-party-advisory

https://vuldb.com/?submit.596624

Exploit, Issue Tracking, Third Party Advisory exploit issue-tracking

https://github.com/jujubooom/CVE/issues/1

Scores

CVSS v3 4.7

EPSS 0.0686

EPSS Percentile 93.2%

Attack Vector NETWORK

CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L

CISA SSVC

Vulnrichment

Exploitation poc

Automatable no

Technical Impact partial

Details

CWE

CWE-74 CWE-77

Status published

Products (1)

dedecms/dedecms < 5.7.2

Published Jun 20, 2025

Tracked Since Feb 18, 2026