DedeCMS - Open Redirect via download.php
CVE-2024-57241
Verified
Description
Dedecms 5.71sp1 and earlier contain a URL redirect caused by a logic error that does not properly validate GET request input, letting attackers redirect users to arbitrary URLs, exploit requires sending crafted GET requests.
Severity
Medium
CVSS Score
6.1
Exploit Probability
1%
Affected Product
dedecms
Published Date
March 29, 2026
Template Author
0x_akoko
CVE-2024-57241.yaml
id: CVE-2024-57241
info:
name: DedeCMS - Open Redirect via download.php
author: 0x_Akoko
severity: medium
description: |
Dedecms 5.71sp1 and earlier contain a URL redirect caused by a logic error that does not properly validate GET request input, letting attackers redirect users to arbitrary URLs, exploit requires sending crafted GET requests.
impact: |
Attackers can redirect users to malicious sites, potentially leading to phishing or malware distribution.
remediation: |
Update to the latest version of Dedecms or apply security patches addressing URL redirect issues.
reference:
- https://nvd.nist.gov/vuln/detail/CVE-2024-57241
- https://github.com/woshidaheike/dedecms-url-redirection
classification:
cve-id: CVE-2024-57241
epss-score: 0.01112
epss-percentile: 0.62025
cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
cvss-score: 6.1
cwe-id: CWE-601
metadata:
verified: true
max-request: 2
vendor: dedecms
product: dedecms
shodan-query: 'http.title:"DedeCMS"'
fofa-query: 'body="DedeCMS" || body="/plus/download.php"'
tags: cve,cve2024,dedecms,redirect,cms
http:
- raw:
- |
GET /plus/download.php?open=1&link=aHR0cHM6Ly9pbnRlcmFjdC5zaA== HTTP/1.1
Host: {{Hostname}}
matchers:
- type: dsl
dsl:
- 'status_code == 302'
- 'location == "https://interact.sh"'
condition: and
# digest: 490a00463044022056c5f7ade5009b85f525ea77e399a7d55a7fa2c15e615a3de72f30dc8b184f5502207f21542718529d0f1931c8db7ee9f11a4df4bdf6bb349fc85e4e839a0a56efab:922c64590222798bb761d5b6d8e729506.1Score
CVSS Metrics
CVSS Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
CVE ID:
cve-2024-57241
CWE ID:
cwe-601
Remediation Steps
Update to the latest version of Dedecms or apply security patches addressing URL redirect issues.