2017-12-18 06:29:00 2018-01-04 16:43:18

DedeCMS through 5.7 has SQL Injection via the logo parameter to plus/flink_add.php.