Description
A flaw has been found in DedeCMS 5.7.88. Affected by this vulnerability is the function base64_decode of the file /plus/download.php?open=1. This manipulation of the argument Link causes server-side request forgery. Remote exploitation of the attack is possible. The exploit has been published and may be used.
Published: 2026-06-02
Score: 5.3 Medium
EPSS: n/a
KEV: No
Impact: n/a
Action: n/a
AI Analysis

Impact

The vulnerability is located in the base64_decode function used by DedeCMS download.php. When the Link argument is manipulated, the function processes a base64‑encoded payload that causes the server to issue an HTTP request to an arbitrary URL. This server‑side request forgery (SSRF) can be triggered by remote attackers, allowing them to reach internal or external network resources, perform data exfiltration, or abuse the server to attack other systems.

Affected Systems

The flaw affects DedeCMS version 5.7.88, as identified for the plus/download.php script. Users running that version, or any unpatched derivative, are exposed. No other DedeCMS versions or products are explicitly listed.

Risk and Exploitability

The CVSS score of 5.3 indicates moderate risk, and the EPSS score is not available, but an exploit has been published. Because the vulnerability can be triggered purely through web requests, the attack vector is remote over the internet. The flaw does not compromise local system integrity directly but provides the attacker a covert channel to the server’s outbound network. No KEV listing indicates it is not currently a catalogued known exploitation program, but the presence of an active exploit means it should be treated as a potential threat.

Generated by OpenCVE AI on June 2, 2026 at 04:21 UTC.

Remediation

No vendor fix or workaround currently provided.

OpenCVE Recommended Actions

  • Check the vendor’s website for an update that addresses the SSRF issue in download.php.
  • Disable or remove the open=1 download functionality until a patch is applied.
  • Configure the web server’s firewall or network ACLs to block outbound HTTP/HTTPS requests to untrusted hosts.
  • Monitor web server logs for unexpected outbound requests that could indicate exploitation.

Generated by OpenCVE AI on June 2, 2026 at 04:21 UTC.

Tracking

Sign in to view the affected projects.

Advisories

No advisories yet.

History

Tue, 02 Jun 2026 03:45:00 +0000

Type Values Removed Values Added
Description A flaw has been found in DedeCMS 5.7.88. Affected by this vulnerability is the function base64_decode of the file /plus/download.php?open=1. This manipulation of the argument Link causes server-side request forgery. Remote exploitation of the attack is possible. The exploit has been published and may be used.
Title DedeCMS download.php base64_decode server-side request forgery
First Time appeared Dedecms
Dedecms dedecms
Weaknesses CWE-918
CPEs cpe:2.3:a:dedecms:dedecms:*:*:*:*:*:*:*:*
Vendors & Products Dedecms
Dedecms dedecms
References
Metrics cvssV2_0

{'score': 6.5, 'vector': 'AV:N/AC:L/Au:S/C:P/I:P/A:P/E:POC/RL:ND/RC:UR'}

cvssV3_0

{'score': 6.3, 'vector': 'CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}

cvssV3_1

{'score': 6.3, 'vector': 'CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:L/I:L/A:L/E:P/RL:X/RC:R'}

cvssV4_0

{'score': 5.3, 'vector': 'CVSS:4.0/AV:N/AC:L/AT:N/PR:L/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P'}

Subscriptions

Dedecms Dedecms
cve-icon MITRE

Status: PUBLISHED

Assigner: VulDB

Published:

Updated: 2026-06-02T02:30:08.479Z

Reserved: 2026-06-01T17:55:38.252Z

Link: CVE-2026-10581

cve-icon Vulnrichment

No data.

cve-icon NVD

Status : Received

Published: 2026-06-02T04:17:02.997

Modified: 2026-06-02T04:17:02.997

Link: CVE-2026-10581

cve-icon Redhat

No data.

cve-icon OpenCVE Enrichment

Updated: 2026-06-02T04:30:36Z

Weaknesses