12Kas
CVE-2024-11138 | DedeCMS 5.7.116 friendlink_add.php logoimg unrestricted upload
A vulnerability classified as problematic has been found in DedeCMS 5.7.116. This affects an unknown part of the file /dede/uploads/dede/friendlink_add.php. The manipulation of the argument logoimg leads to unrestricted upload. This vulnerability is uniquely identified as CVE-2024-11138. It is possible to initiate the attack remotely. Furthermore, there is an exploit available.