A vulnerability was found in idcCMS 1.35. It has been declared as problematic. Affected by this vulnerability is an unknown functionality of the file /admin/userSys_deal.php?mudi=infoSet. The manipulation leads to cross-site request forgery.

This vulnerability is known as CVE-2024-39158. The attack can be launched remotely. There is no exploit available.