Headline
CVE-2022-40921: GitHub - T4nGg/DedeCMS-V5.7.99-File-Upload: DedeCMS V5.7.99 File Upload
DedeCMS V5.7.99 was discovered to contain an arbitrary file upload vulnerability via the component /dede/file_manage_control.php.
DedeCMS-V5.7.99-File-Upload
DedeCMS V5.7.99 File Upload vulnerability
DedeCMS official website to download the latest source code
Official website address: https://www.dedecms.com/
Default background path /dede
Default administrator account password admin/admin
Enter the website background-file manager
select new file
After entering the malicious code, click Save
After saving successfully, visit /uploads/1.php
execute code