Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
seacms seacms vulnerabilities and exploits
(subscribe to this query)
7.2
CVSSv3
CVE-2022-28076
Seacms v11.6 exists to contain a remote command execution (RCE) vulnerability via the Mail Server Settings.
Seacms Seacms 11.6
7.2
CVSSv3
CVE-2018-19349
In SeaCMS v6.64, there is SQL injection via the admin_makehtml.php topic parameter because of mishandling in include/mkhtml.func.php.
Seacms Seacms 6.64
7.2
CVSSv3
CVE-2018-16343
SeaCMS 6.61 allows remote malicious users to execute arbitrary code because parseIf() in include/main.class.php does not block use of $GLOBALS.
Seacms Seacms 6.61
7.2
CVSSv3
CVE-2017-17561
SeaCMS 6.56 allows remote authenticated administrators to execute arbitrary PHP code via a crafted token field to admin/admin_ping.php, which interacts with data/admin/ping.php.
Seacms Project Seacms 6.56
6.5
CVSSv3
CVE-2023-2926
A vulnerability was found in SeaCMS 11.6 and classified as problematic. This issue affects some unknown processing of the file member.php of the component Picture Upload Handler. The manipulation of the argument oldpic leads to denial of service. The attack may be initiated remot...
Seacms Seacms 11.6
6.5
CVSSv3
CVE-2020-28846
Cross Site Request Forgery (CSRF) vulnerability exists in SeaCMS 10.7 in admin_manager.php, which could let a malicious user add an admin account.
Seacms Seacms 10.7
6.1
CVSSv3
CVE-2021-29313
Cross Site Scripting (XSS) vulnerability exists in SeaCMS 12.6 via the (1) v_company and (2) v_tvs parameters in /admin_video.php,
Seacms Seacms 12.6
6.1
CVSSv3
CVE-2020-26642
A cross-site scripting (XSS) vulnerability has been discovered in the login page of SeaCMS version 11 which allows an malicious user to inject arbitrary web script or HTML.
Seacms Seacms 11.0
6.1
CVSSv3
CVE-2018-17321
An issue exists in SeaCMS 6.64. XSS exists in admin_datarelate.php via the time or maxHit parameter in a dorandomset action.
Seacms Seacms 6.64
6.1
CVSSv3
CVE-2018-17062
An issue exists in SeaCMS 6.64. XSS exists in admin_video.php via the action, area, type, yuyan, jqtype, v_isunion, v_recycled, v_ismoney, or v_ispsd parameter.
Seacms Seacms 6.64
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-3380
CVE-2024-1694
local file inclusion
CVE-2024-5645
CVE-2024-24919
XSS
CVE-2024-36774
CVE-2024-21306
SQL
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »