CVE-2024-48758 Information

Description

dingfanzu CMS V1.0 was discovered to contain a Cross-Site Request Forgery (CSRF) via the addPro parameter of the component doAdminAction.php which allows a remote attacker to execute arbitrary code

Reference

https://github.com/Yllxx03/CVE/blob/main/CVE-2024-48758/CVE-2024-48758.md