Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
seacms seacms vulnerabilities and exploits
(subscribe to this query)
5.4
CVSSv3
CVE-2023-37124
A stored cross-site scripting (XSS) vulnerability in the Site Setup module of SEACMS v12.1 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload.
Seacms Seacms 12.1
5.4
CVSSv3
CVE-2023-37125
A stored cross-site scripting (XSS) vulnerability in the Management Custom label module of SEACMS v12.1 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload.
Seacms Seacms 12.1
6.5
CVSSv3
CVE-2023-2926
A vulnerability was found in SeaCMS 11.6 and classified as problematic. This issue affects some unknown processing of the file member.php of the component Picture Upload Handler. The manipulation of the argument oldpic leads to denial of service. The attack may be initiated remot...
Seacms Seacms 11.6
9.8
CVSSv3
CVE-2023-44170
SeaCMS V12.9 exists to contain an arbitrary file write vulnerability via the component admin_ping.php.
Seacms Seacms 12.9
9.8
CVSSv3
CVE-2023-44171
SeaCMS V12.9 exists to contain an arbitrary file write vulnerability via the component admin_smtp.php.
Seacms Seacms 12.9
9.8
CVSSv3
CVE-2023-44172
SeaCMS V12.9 exists to contain an arbitrary file write vulnerability via the component admin_weixin.php.
Seacms Seacms 12.9
5.4
CVSSv3
CVE-2023-50470
A cross-site scripting (XSS) vulnerability in the component admin_ Video.php of SeaCMS v12.8 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload.
Seacms Seacms 12.8
6.1
CVSSv3
CVE-2018-14517
SeaCMS 6.61 has two XSS issues in the admin_config.php file via certain form fields.
Seacms Seacms 6.61
7.2
CVSSv3
CVE-2018-16343
SeaCMS 6.61 allows remote malicious users to execute arbitrary code because parseIf() in include/main.class.php does not block use of $GLOBALS.
Seacms Seacms 6.61
4.8
CVSSv3
CVE-2018-16348
SeaCMS V6.61 has XSS via the admin_video.php v_content parameter, related to the site name.
Seacms Seacms 6.61
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »