Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
seacms seacms vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2022-23878
seacms V11.5 is affected by an arbitrary code execution vulnerability in admin_config.php.
Seacms Seacms 11.5
7.2
CVSSv3
CVE-2018-19349
In SeaCMS v6.64, there is SQL injection via the admin_makehtml.php topic parameter because of mishandling in include/mkhtml.func.php.
Seacms Seacms 6.64
6.1
CVSSv3
CVE-2018-11583
SeaCMS 6.61 has stored XSS in admin_collect.php via the siteurl parameter.
Seacms Seacms 6.61
6.1
CVSSv3
CVE-2020-26642
A cross-site scripting (XSS) vulnerability has been discovered in the login page of SeaCMS version 11 which allows an malicious user to inject arbitrary web script or HTML.
Seacms Seacms 11.0
5.4
CVSSv3
CVE-2023-37124
A stored cross-site scripting (XSS) vulnerability in the Site Setup module of SEACMS v12.1 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload.
Seacms Seacms 12.1
5.4
CVSSv3
CVE-2023-37125
A stored cross-site scripting (XSS) vulnerability in the Management Custom label module of SEACMS v12.1 allows malicious users to execute arbitrary web scripts or HTML via a crafted payload.
Seacms Seacms 12.1
7.2
CVSSv3
CVE-2017-17561
SeaCMS 6.56 allows remote authenticated administrators to execute arbitrary PHP code via a crafted token field to admin/admin_ping.php, which interacts with data/admin/ping.php.
Seacms Project Seacms 6.56
9.8
CVSSv3
CVE-2021-37358
SQL Injection in SEACMS v210530 (2021-05-30) allows remote malicious users to execute arbitrary code via the component "admin_ajax.php?action=checkrepeat&v_name=".
Seacms Seacms 2021-05-30
7.5
CVSSv3
CVE-2018-16446
An issue exists in SeaCMS up to and including 6.61. adm1n/admin_database.php allows remote malicious users to delete arbitrary files via directory traversal sequences in the bakfiles parameter. This can allow the product to be reinstalled by deleting install_lock.txt.
Seamcms Seacms
NA
CVE-2024-30565
An issue exists in SeaCMS version 12.9, allows remote malicious users to execute arbitrary code via admin notify.php.
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
validation
CVE-2012-1823
malicious code
CVE-2024-5770
CVE-2023-45866
CVE-2024-35687
local users
CVE-2024-31246
CVE-2024-35730
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »