VYPR
Critical severity9.8NVD Advisory· Published Dec 18, 2017· Updated Jun 17, 2026

CVE-2017-17731

CVE-2017-17731

Description

DedeCMS through 5.7 has SQL Injection via the $_FILES superglobal to plus/recommend.php.

Affected products

3
  • Dedecms/Dedecmsinferred3 versions
    <=5.7+ 2 more
    • (no CPE)range: <=5.7
    • cpe:2.3:a:dedecms:dedecms:*:*:*:*:*:*:*:*range: <=5.7
    • (no CPE)range: <=5.7

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.