Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
seacms seacms vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv2
CVE-2022-27336
Seacms v11.6 exists to contain a remote code execution (RCE) vulnerability via the component /admin/weixin.php.
Seacms Seacms 11.6
7.5
CVSSv2
CVE-2022-23878
seacms V11.5 is affected by an arbitrary code execution vulnerability in admin_config.php.
Seacms Seacms 11.5
7.5
CVSSv2
CVE-2021-37358
SQL Injection in SEACMS v210530 (2021-05-30) allows remote malicious users to execute arbitrary code via the component "admin_ajax.php?action=checkrepeat&v_name=".
Seacms Seacms 2021-05-30
7.5
CVSSv2
CVE-2020-21378
SQL injection vulnerability in SeaCMS 10.1 (2020.02.08) via the id parameter in an edit action to admin_members_group.php.
Seacms Seacms 10.1
7.5
CVSSv2
CVE-2018-16822
SeaCMS 6.64 allows SQL Injection via the upload/admin/admin_video.php order parameter.
Seacms Seacms 6.64
7.5
CVSSv2
CVE-2018-16445
An issue exists in SeaCMS up to and including 6.61. SQL injection exists via the tid parameter in an adm1n/admin_topic_vod.php request.
Seacms Seacms
6.8
CVSSv2
CVE-2018-14910
SeaCMS v6.61 allows Remote Code execution by placing PHP code in an allowed IP address (aka ip) to /admin/admin_ip.php (aka /adm1n/admin_ip.php). The code is executed by visiting adm1n/admin_ip.php or data/admin/ip.php. This can also be exploited through CSRF.
Seacms Seacms 6.61
6.8
CVSSv2
CVE-2018-14421
SeaCMS v6.61 allows Remote Code execution by placing PHP code in a movie picture address (aka v_pic) to /admin/admin_video.php (aka /backend/admin_video.php). The code is executed by visiting /details/index.php. This can also be exploited through CSRF.
Seacms Seacms 6.61
6.8
CVSSv2
CVE-2018-13444
An issue exists in SeaCMS 6.61. There is a CSRF vulnerability that can add an admin account via adm1n/admin_manager.php?action=save&id=2.
Seacms Seacms 6.61
6.8
CVSSv2
CVE-2018-13445
An issue exists in SeaCMS 6.61. There is a CSRF vulnerability that can add a user account via adm1n/admin_manager.php?action=add.
Seacms Seacms 6.61
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »