iimiss/cms

Releases0

CVE History

CVE	Published	CVSS v3	CVSS v2
CVE-2024-29684 ↗	Mar 26, 2024Tuesday, 26 March 2024, 14:15	9.8 CRITICAL	—
DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /src/dede/makehtml_homepage.php allowing a remote attacker to execute arbitrary code.