PatchSiren

DedeCMS CVE debriefs

These pages are published after PatchSiren validates generated defensive summaries against stored public CVE and source evidence.

LOW DedeCMS CVE published 2026-07-13

CVE-2026-15533

A security flaw has been discovered in DedeCMS 5.7.118, impacting an unknown function of the file /plus/search.php in the Column Management component. The vulnerability allows for code injection through manipulation of the Column Name argument and can be exploited remotely. This issue may affect users of DedeCMS 5.7.118, and they should take necessary precautions to protect their systems. The vulnerabilit [truncated]