CVE-2024-4585

Summary

CVE-2024-4585 is a recently disclosed vulnerability affecting DedeCMS 5.7. The issue, classified as problematic, lies within the file /src/dede/member_type.php, which is an unspecified part of the software. This vulnerability results in a cross-site request forgery (CSRF) threat. An attacker can remotely initiate this exploit, taking advantage of unsuspecting users who visit a malicious website. As of now, the public has knowledge of the vulnerability, making it a potential target for cybercriminals. The associated identifier for this vulnerability is VDB-263307. Unfortunately, the vendor has not responded to disclosure notifications regarding this issue.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.