.. / CVE-2023-2059

Exploit for DedeCMS 5.7.87 - Directory Traversal (CVE-2023-2059)

Description:

Directory traversal vulnerability in DedeCMS 5.7.87 allows reading sensitive files via the $activepath parameter.

Nuclei Template

View the template here CVE-2023-2059.yaml

Validate with Nuclei

echo "$URL" | nuclei -t ~/nuclei-templates/http/cves/2023/CVE-2023-2059.yaml
Copy

References:

https://nvd.nist.gov/vuln/detail/CVE-2023-2059
https://github.com/ATZXC-RedTeam/cve/blob/main/dedecms.md
https://vuldb.com/?id.225944
https://vuldb.com/?ctiid.225944