idccms V1.35 exists to contain a Cross-Site Request Forgery (CSRF) via admin/tplSys_deal.php?mudi=area.