CVE-2024-3147 | DedeCMS 5.7 makehtml_map.php cross-site request forgery

Posted by Angelo Barbosa | Apr 1, 2024 | CVE

A vulnerability classified as problematic was found in DedeCMS 5.7. This vulnerability affects unknown code of the file /src/dede/makehtml_map.php. The manipulation leads to cross-site request forgery.

This vulnerability was named CVE-2024-3147. The attack can be initiated remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-3147 | DedeCMS 5.7 makehtml_map.php cross-site request forgery

Related Posts

CVE-2024-2925 | Beaver Builder Plugin up to 2.8.0.5 on WordPress Button cross site scripting

CVE-2024-6394 | parisneo lollms-webui up to 9.7 Configuration File app.py serve_js path traversal

CVE-2024-41839 | Adobe Experience Manager up to 6.5.20 input validation (apsb24-28)

CVE-2023-5768 | Hitachi Energy RTU500 APDU Frame Layout denial of service