Vulnerabilities > Seacms

DATE CVE VULNERABILITY TITLE RISK
2024-09-03 CVE-2024-44920 Cross-site Scripting vulnerability in Seacms 12.9
A cross-site scripting (XSS) vulnerability in the component admin_collect_news.php of SeaCMS v12.9 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the siteurl parameter.
network
low complexity
seacms CWE-79
6.1
2024-09-03 CVE-2024-44921 SQL Injection vulnerability in Seacms 12.9
SeaCMS v12.9 was discovered to contain a SQL injection vulnerability via the id parameter at /dmplayer/dmku/index.php?ac=del.
network
low complexity
seacms CWE-89
critical
9.8
2024-08-30 CVE-2024-44683 Cross-site Scripting vulnerability in Seacms 13.0
Seacms v13 is vulnerable to Cross Site Scripting (XSS) via admin-video.php.
network
low complexity
seacms CWE-79
6.1
2024-08-29 CVE-2024-44919 Cross-site Scripting vulnerability in Seacms 12.9
A cross-site scripting (XSS) vulnerability in the component admin_ads.php of SeaCMS v12.9 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the ad description parameter.
network
low complexity
seacms CWE-79
5.4
2024-08-26 CVE-2024-41444 SQL Injection vulnerability in Seacms 12.9
SeaCMS v12.9 has a SQL injection vulnerability in the key parameter of /js/player/dmplayer/dmku/index.php?ac=so.
network
low complexity
seacms CWE-89
critical
9.8
2024-07-28 CVE-2024-7163 Unspecified vulnerability in Seacms 12.9
A vulnerability, which was classified as problematic, was found in SeaCMS 12.9.
network
low complexity
seacms
6.1
2024-07-28 CVE-2024-7161 Unspecified vulnerability in Seacms 13.0
A vulnerability classified as problematic was found in SeaCMS 13.0.
network
low complexity
seacms
6.5
2024-07-28 CVE-2024-7162 Unspecified vulnerability in Seacms 12.9/13.0
A vulnerability, which was classified as problematic, has been found in SeaCMS 12.9/13.0.
network
low complexity
seacms
5.4
2024-07-16 CVE-2024-39036 Path Traversal vulnerability in Seacms 12.9
SeaCMS v12.9 is vulnerable to Arbitrary File Read via admin_safe.php.
network
low complexity
seacms CWE-22
6.5
2024-07-12 CVE-2024-40518 Unspecified vulnerability in Seacms 12.9
SeaCMS 12.9 has a remote code execution vulnerability.
network
low complexity
seacms
8.8