CVE-2024-29660

Cross Site Scripting vulnerability in DedeCMS v.5.7 allows a local attacker to execute arbitrary code via a crafted payload to the stepselect_main.php component.

References

https://github.com/ysl1415926/cve/blob/main/DedeCMSv5.7.md