Dedecms CVEs & Vulnerabilities
3 CVEs affecting Dedecms products, tracked from the National Vulnerability Database, with CVSS/EPSS scores and exploitation status.
3 CVEs→ All vendors
Most Affected Products
dedecms 3
CVE-2026-30643CRITICAL
An issue was discovered in DedeCMS 5.7.118 allowing attackers to execute code via crafted setup tag values in a module upload.
1 Apr 2026
9.8
CVSS
CVE-2026-29839HIGH
DedeCMS v5.7.118 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability in /sys_task_add.php.
24 Mar 2026
8.8
CVSS
CVE-2026-30694CRITICAL
An issue in DedeCMS v.5.7.118 and before allows a remote attacker to execute arbitrary code via the array_filter component
19 Mar 2026
9.8
CVSS
← PrevPage 1 / 1Next →