Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
seacms vulnerabilities and exploits
(subscribe to this query)
6.5
CVSSv3
CVE-2023-2926
A vulnerability was found in SeaCMS 11.6 and classified as problematic. This issue affects some unknown processing of the file member.php of the component Picture Upload Handler. The manipulation of the argument oldpic leads to denial of service. The attack may be initiated remot...
Seacms Seacms 11.6
9.8
CVSSv3
CVE-2023-44169
SeaCMS V12.9 exists to contain an arbitrary file write vulnerability via the component admin_notify.php.
Seacms Seacms 12.9
9.8
CVSSv3
CVE-2023-44170
SeaCMS V12.9 exists to contain an arbitrary file write vulnerability via the component admin_ping.php.
Seacms Seacms 12.9
9.8
CVSSv3
CVE-2023-44171
SeaCMS V12.9 exists to contain an arbitrary file write vulnerability via the component admin_smtp.php.
Seacms Seacms 12.9
9.8
CVSSv3
CVE-2023-44172
SeaCMS V12.9 exists to contain an arbitrary file write vulnerability via the component admin_weixin.php.
Seacms Seacms 12.9
6.1
CVSSv3
CVE-2021-29313
Cross Site Scripting (XSS) vulnerability exists in SeaCMS 12.6 via the (1) v_company and (2) v_tvs parameters in /admin_video.php,
Seacms Seacms 12.6
7.2
CVSSv3
CVE-2017-17561
SeaCMS 6.56 allows remote authenticated administrators to execute arbitrary PHP code via a crafted token field to admin/admin_ping.php, which interacts with data/admin/ping.php.
Seacms Project Seacms 6.56
9.8
CVSSv3
CVE-2021-37358
SQL Injection in SEACMS v210530 (2021-05-30) allows remote malicious users to execute arbitrary code via the component "admin_ajax.php?action=checkrepeat&v_name=".
Seacms Seacms 2021-05-30
7.5
CVSSv3
CVE-2018-16446
An issue exists in SeaCMS up to and including 6.61. adm1n/admin_database.php allows remote malicious users to delete arbitrary files via directory traversal sequences in the bakfiles parameter. This can allow the product to be reinstalled by deleting install_lock.txt.
Seamcms Seacms
NA
CVE-2024-30565
An issue exists in SeaCMS version 12.9, allows remote malicious users to execute arbitrary code via admin notify.php.
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
authentication bypass
CVE-2024-30043
camera
CVE-2023-40404
CVE-2024-2793
client side
CVE-2024-4469
CVE-2024-3565
CVE-2024-29825
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »