High severity7.3NVD Advisory· Published Jun 2, 2026· Updated Jun 4, 2026
CVE-2026-10607
CVE-2026-10607
Description
A vulnerability was identified in DedeCMS 5.7.88. The impacted element is the function dede_htmlspecialchars of the file /plus/flink.php. The manipulation of the argument msg leads to sql injection. The attack may be initiated remotely. The exploit is publicly available and might be used.
Affected products
1Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.