Vulnerabilities > Seacms
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2024-09-03 | CVE-2024-44920 | Cross-site Scripting vulnerability in Seacms 12.9 A cross-site scripting (XSS) vulnerability in the component admin_collect_news.php of SeaCMS v12.9 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the siteurl parameter. | 6.1 |
2024-09-03 | CVE-2024-44921 | SQL Injection vulnerability in Seacms 12.9 SeaCMS v12.9 was discovered to contain a SQL injection vulnerability via the id parameter at /dmplayer/dmku/index.php?ac=del. | 9.8 |
2024-08-30 | CVE-2024-44683 | Cross-site Scripting vulnerability in Seacms 13.0 Seacms v13 is vulnerable to Cross Site Scripting (XSS) via admin-video.php. | 6.1 |
2024-08-29 | CVE-2024-44919 | Cross-site Scripting vulnerability in Seacms 12.9 A cross-site scripting (XSS) vulnerability in the component admin_ads.php of SeaCMS v12.9 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the ad description parameter. | 5.4 |
2024-08-26 | CVE-2024-41444 | SQL Injection vulnerability in Seacms 12.9 SeaCMS v12.9 has a SQL injection vulnerability in the key parameter of /js/player/dmplayer/dmku/index.php?ac=so. | 9.8 |
2024-07-28 | CVE-2024-7163 | Unspecified vulnerability in Seacms 12.9 A vulnerability, which was classified as problematic, was found in SeaCMS 12.9. | 6.1 |
2024-07-28 | CVE-2024-7161 | Unspecified vulnerability in Seacms 13.0 A vulnerability classified as problematic was found in SeaCMS 13.0. | 6.5 |
2024-07-28 | CVE-2024-7162 | Unspecified vulnerability in Seacms 12.9/13.0 A vulnerability, which was classified as problematic, has been found in SeaCMS 12.9/13.0. | 5.4 |
2024-07-16 | CVE-2024-39036 | Path Traversal vulnerability in Seacms 12.9 SeaCMS v12.9 is vulnerable to Arbitrary File Read via admin_safe.php. | 6.5 |
2024-07-12 | CVE-2024-40518 | Unspecified vulnerability in Seacms 12.9 SeaCMS 12.9 has a remote code execution vulnerability. | 8.8 |