Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
seacms vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2021-39426
An issue exists in /Upload/admin/admin_notify.php in Seacms 11.4 allows malicious users to execute arbitrary php code via the notify1 parameter when the action parameter equals set.
Seacms Seacms 11.4
NA
CVE-2022-43256
SeaCms before v12.6 exists to contain a SQL injection vulnerability via the component /js/player/dmplayer/dmku/index.php.
Seacms Seacms
578
VMScore
CVE-2022-28076
Seacms v11.6 exists to contain a remote command execution (RCE) vulnerability via the Mail Server Settings.
Seacms Seacms 11.6
668
VMScore
CVE-2022-27336
Seacms v11.6 exists to contain a remote code execution (RCE) vulnerability via the component /admin/weixin.php.
Seacms Seacms 11.6
668
VMScore
CVE-2022-23878
seacms V11.5 is affected by an arbitrary code execution vulnerability in admin_config.php.
Seacms Seacms 11.5
668
VMScore
CVE-2021-37358
SQL Injection in SEACMS v210530 (2021-05-30) allows remote malicious users to execute arbitrary code via the component "admin_ajax.php?action=checkrepeat&v_name=".
Seacms Seacms 2021-05-30
383
VMScore
CVE-2021-29313
Cross Site Scripting (XSS) vulnerability exists in SeaCMS 12.6 via the (1) v_company and (2) v_tvs parameters in /admin_video.php,
Seacms Seacms 12.6
383
VMScore
CVE-2020-28846
Cross Site Request Forgery (CSRF) vulnerability exists in SeaCMS 10.7 in admin_manager.php, which could let a malicious user add an admin account.
Seacms Seacms 10.7
383
VMScore
CVE-2020-26642
A cross-site scripting (XSS) vulnerability has been discovered in the login page of SeaCMS version 11 which allows an malicious user to inject arbitrary web script or HTML.
Seacms Seacms 11.0
668
VMScore
CVE-2020-21378
SQL injection vulnerability in SeaCMS 10.1 (2020.02.08) via the id parameter in an edit action to admin_members_group.php.
Seacms Seacms 10.1
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
NEXT »