Vulnerabilities > Seacms > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-05-27 | CVE-2023-2926 | Unspecified vulnerability in Seacms 11.6 A vulnerability was found in SeaCMS 11.6 and classified as problematic. | 6.5 |
| 2021-08-17 | CVE-2021-29313 | Cross-site Scripting vulnerability in Seacms 12.6 Cross Site Scripting (XSS) vulnerability exists in SeaCMS 12.6 via the (1) v_company and (2) v_tvs parameters in /admin_video.php, | 6.1 |
| 2021-08-17 | CVE-2020-28846 | Cross-Site Request Forgery (CSRF) vulnerability in Seacms 10.7 Cross Site Request Forgery (CSRF) vulnerability exists in SeaCMS 10.7 in admin_manager.php, which could let a malicious user add an admin account. | 6.5 |
| 2021-05-28 | CVE-2020-26642 | Cross-site Scripting vulnerability in Seacms 11.0 A cross-site scripting (XSS) vulnerability has been discovered in the login page of SeaCMS version 11 which allows an attacker to inject arbitrary web script or HTML. | 6.1 |
| 2018-11-17 | CVE-2018-19350 | Cross-site Scripting vulnerability in Seacms 6.64 In SeaCMS v6.6.4, there is stored XSS via the member.php?action=chgpwdsubmit email parameter during a password change, as demonstrated by a data: URL in an OBJECT element. | 5.4 |
| 2018-09-22 | CVE-2018-17321 | Cross-site Scripting vulnerability in Seacms 6.64 An issue was discovered in SeaCMS 6.64. | 6.1 |
| 2018-09-21 | CVE-2018-16821 | Unrestricted Upload of File with Dangerous Type vulnerability in Seacms 6.64 SeaCMS 6.64 allows arbitrary directory listing via upload/admin/admin_template.php?path=../templets/../../ requests. | 5.3 |
| 2018-09-16 | CVE-2018-17062 | Cross-site Scripting vulnerability in Seacms 6.64 An issue was discovered in SeaCMS 6.64. | 6.1 |
| 2018-09-02 | CVE-2018-16348 | Cross-site Scripting vulnerability in Seacms 6.61 SeaCMS V6.61 has XSS via the admin_video.php v_content parameter, related to the site name. | 4.8 |
| 2018-07-23 | CVE-2018-14517 | Cross-site Scripting vulnerability in Seacms 6.61 SeaCMS 6.61 has two XSS issues in the admin_config.php file via certain form fields. | 6.1 |