CVE-2024-2821
CVE-2024-2821 affects DedecMS 5.7 , where the vulnerability lies in the file /src/dede/friendlink_edit.php. Manipulating the id parameter leads to cross-site request forgery (CSRF); the attack can be launched remotely and the exploit has been publicly disclosed. Several sources confirm the condit...