DedeCMS v5.7 exists to contain a Cross-Site Request Forgery (CSRF) via the component /src/dede/makehtml_homepage.php allowing a remote malicious user to execute arbitrary code.