CVE-2024-30855 | THREATINT

Description

DedeCMS v5.7 was discovered to contain a Cross-Site Request Forgery (CSRF) vulnerability via /src/dede/makehtml_list_action.php.

PUBLISHED Reserved 2024-03-27 | Published 2025-12-29 | Updated 2025-12-31 | Assigner mitre

References

github.com/Limingqian123/cms/blob/main/1.md exploit

github.com/Limingqian123/cms/blob/main/1.md

gist.github.com/...gqian123/e90a1b86c02bd83d4ab07c08cad9a629

cve.org (CVE-2024-30855)

nvd.nist.gov (CVE-2024-30855)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.

help @ threatint.eu