iimiss

1 exploit Active since Mar 2024
CVE-2024-29684 WRITEUP CRITICAL WORKING POC
DedeCMS v5.7 - Cross-Site Request Forgery via makehtml_homepage.php
DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /src/dede/makehtml_homepage.php allowing a remote attacker to execute arbitrary code.
CVSS 9.8