Vulnerabilities > Seacms

DATE CVE VULNERABILITY TITLE RISK
2023-10-10 CVE-2023-44846 Unspecified vulnerability in Seacms
An issue in SeaCMS v.12.8 allows an attacker to execute arbitrary code via the admin_ notify.php component.
network
low complexity
seacms
8.8
2023-10-10 CVE-2023-44847 Unspecified vulnerability in Seacms
An issue in SeaCMS v.12.8 allows an attacker to execute arbitrary code via the admin_ Weixin.php component.
network
low complexity
seacms
7.2
2023-10-10 CVE-2023-44848 Unspecified vulnerability in Seacms
An issue in SeaCMS v.12.8 allows an attacker to execute arbitrary code via the admin_template.php component.
network
low complexity
seacms
8.1
2023-09-27 CVE-2023-43216 Unspecified vulnerability in Seacms 12.9
SeaCMS V12.9 was discovered to contain an arbitrary file write vulnerability via the component admin_ip.php.
network
low complexity
seacms
critical
9.8
2023-09-27 CVE-2023-43222 Unspecified vulnerability in Seacms
SeaCMS v12.8 has an arbitrary code writing vulnerability in the /jxz7g2/admin_ping.php file.
network
low complexity
seacms
critical
9.8
2023-09-27 CVE-2023-44169 Unspecified vulnerability in Seacms 12.9
SeaCMS V12.9 was discovered to contain an arbitrary file write vulnerability via the component admin_notify.php.
network
low complexity
seacms
critical
9.8
2023-09-27 CVE-2023-44170 Unspecified vulnerability in Seacms 12.9
SeaCMS V12.9 was discovered to contain an arbitrary file write vulnerability via the component admin_ping.php.
network
low complexity
seacms
critical
9.8
2023-09-27 CVE-2023-44171 Unspecified vulnerability in Seacms 12.9
SeaCMS V12.9 was discovered to contain an arbitrary file write vulnerability via the component admin_smtp.php.
network
low complexity
seacms
critical
9.8
2023-09-27 CVE-2023-44172 Unspecified vulnerability in Seacms 12.9
SeaCMS V12.9 was discovered to contain an arbitrary file write vulnerability via the component admin_weixin.php.
network
low complexity
seacms
critical
9.8
2023-09-25 CVE-2023-43278 Cross-Site Request Forgery (CSRF) vulnerability in Seacms
A Cross-Site Request Forgery (CSRF) in admin_manager.php of Seacms up to v12.8 allows attackers to arbitrarily add an admin account.
network
low complexity
seacms CWE-352
8.8