Vulnerabilities > Seacms > Critical
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-09-03 | CVE-2024-44921 | SQL Injection vulnerability in Seacms 12.9 SeaCMS v12.9 was discovered to contain a SQL injection vulnerability via the id parameter at /dmplayer/dmku/index.php?ac=del. | 9.8 |
| 2024-08-26 | CVE-2024-41444 | SQL Injection vulnerability in Seacms 12.9 SeaCMS v12.9 has a SQL injection vulnerability in the key parameter of /js/player/dmplayer/dmku/index.php?ac=so. | 9.8 |
| 2024-07-05 | CVE-2024-39028 | Unspecified vulnerability in Seacms An issue was discovered in SeaCMS <=12.9 which allows remote attackers to execute arbitrary code via admin_ping.php. | 9.8 |
| 2024-06-10 | CVE-2024-31611 | Unspecified vulnerability in Seacms 12.9 SeaCMS 12.9 has a file deletion vulnerability via admin_template.php. | 9.1 |
| 2023-10-25 | CVE-2023-46010 | Unspecified vulnerability in Seacms An issue in SeaCMS v.12.9 allows an attacker to execute arbitrary commands via the admin_safe.php component. | 9.8 |
| 2023-09-27 | CVE-2023-43216 | Unspecified vulnerability in Seacms 12.9 SeaCMS V12.9 was discovered to contain an arbitrary file write vulnerability via the component admin_ip.php. | 9.8 |
| 2023-09-27 | CVE-2023-43222 | Unspecified vulnerability in Seacms SeaCMS v12.8 has an arbitrary code writing vulnerability in the /jxz7g2/admin_ping.php file. | 9.8 |
| 2023-09-27 | CVE-2023-44169 | Unspecified vulnerability in Seacms 12.9 SeaCMS V12.9 was discovered to contain an arbitrary file write vulnerability via the component admin_notify.php. | 9.8 |
| 2023-09-27 | CVE-2023-44170 | Unspecified vulnerability in Seacms 12.9 SeaCMS V12.9 was discovered to contain an arbitrary file write vulnerability via the component admin_ping.php. | 9.8 |
| 2023-09-27 | CVE-2023-44171 | Unspecified vulnerability in Seacms 12.9 SeaCMS V12.9 was discovered to contain an arbitrary file write vulnerability via the component admin_smtp.php. | 9.8 |