CVE-2024-3147 | DedeCMS 5.7 makehtml_map.php cross-site request forgery

Posted by Angelo Barbosa | Apr 1, 2024 | CVE

A vulnerability classified as problematic was found in DedeCMS 5.7. This vulnerability affects unknown code of the file /src/dede/makehtml_map.php. The manipulation leads to cross-site request forgery.

This vulnerability was named CVE-2024-3147. The attack can be initiated remotely. Furthermore, there is an exploit available.

The vendor was contacted early about this disclosure but did not respond in any way.

CVE-2024-3147 | DedeCMS 5.7 makehtml_map.php cross-site request forgery

Related Posts

CVE-2019-20460 | Epson Expression Home XP255 20.08.FM10I8 POST Request cross-site request forgery

CVE-2024-47290 | Huawei HarmonyOS/EMUI USB Service Module null pointer dereference

CVE-2023-49680 | Kashipara Group Job Portal 1.0 Employer/InsertJob.php txtTotal sql injection

CVE-2024-28715 | DoraCMS up to 2.18 markdown.jsx markdown0 cross site scripting