Vulnerability: DedeCMS 5.7 - SQL Injection

DedeCMS through 5.7 has SQL Injection via the $_FILES superglobal to plus/recommend.php.

Impact

Successful exploitation of this vulnerability could allow an attacker to execute arbitrary SQL queries, potentially leading to unauthorized access, data leakage, or data manipulation.

Severity

critical

Verified

Unknown