### [CVE-2024-35010](https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2024-35010)
![](https://img.shields.io/static/v1?label=Product&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Version&message=n%2Fa&color=blue)
![](https://img.shields.io/static/v1?label=Vulnerability&message=n%2Fa&color=brighgreen)

### Description

idccms v1.35 was discovered to contain a Cross-Site Request Forgery (CSRF) via the component /admin/banner_deal.php?mudi=del&dataType=&dataTypeCN=%E5%9B%BE%E7%89%87%E5%B9%BF%E5%91%8A&theme=cs&dataID=6.

### POC

#### Reference
- https://github.com/Thirtypenny77/cms/blob/main/6.md

#### Github
- https://github.com/fkie-cad/nvd-json-data-feeds