CVE-2024-48758

Description

dingfanzu CMS V1.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via the addPro parameter of the component doAdminAction.php which allows a remote attacker to execute arbitrary code

PUBLISHED Reserved 2024-10-08 | Published 2024-10-16 | Updated 2024-10-17 | Assigner mitre

References

github.com/...CVE/blob/main/CVE-2024-48758/CVE-2024-48758.md

cve.org (CVE-2024-48758)

nvd.nist.gov (CVE-2024-48758)

Download JSON

Data based on CVE®. Copyright © 1999-2025, The MITRE Corporation. All rights reserved.