There is an arbitrary file upload vulnerability on the media add .php page in the backend of the website in version 5.7.114 of DedeCMS
The vulnerability (CWE-434) results from insufficient validation of uploaded file types on the 'media add.php' page in the DedeCMS backend. An attacker can upload a file with malicious content (e.g., PHP webshell) while impersonating an allowed file type. Once such a file is placed on the server, it can be executed remotely through an appropriate HTTP request.
Successful exploitation of the vulnerability allows an attacker to execute code remotely (RCE) on the server, which may result in complete system takeover, data theft, backdoor installation, or further lateral movement in the network.
Apply patches available from the vendor according to the references. Additionally, it is recommended to restrict access to the administration panel only to trusted IP addresses and implement file type control mechanisms at the web server and Web Application Firewall (WAF) level.
DedeCMS version 5.7.114
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:HDedecms
APPDedecms5.7.114
Related vulnerabilities
DedeCMS 5.7.118 — zdalne wykonanie kodu przez upload modułu (RCE)
RCE w DedeCMS poprzez komponent array_filter
DedeCMS – arbitrary file upload umożliwiający RCE
DedeCMS – nieautoryzowane usunięcie dowolnego pliku przez mail_file_manage.php
Krytyczne RCE przez File Upload w DedeCMS v5.7