DeDeCMS.Remote.File.Inclusion
Description
This indicates an attack attempt to exploit a Directory Traversal Vulnerability in DeDeCMS.
The vulnerability is due to insufficient input validation when processing HTTP requests. A remote, authenticated attacker could exploit this vulnerability by sending crafted HTTP requests to the target server. Successful exploitation could result in uploading arbitrary files on the system.
Affected Products
DeDeCMS 5.7-sp1
DeDeCMS 5.6
DeDeCMS 5.5
DeDeCMS 5.3
DeDeCMS 5.1
Impact
System Compromise: Remote attackers can execute arbitrary code on vulnerable systems.
Recommended Actions
Currently we are unaware of any vendor supplied patch or updates available for this issue.
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |