Vulnerabilities > Seacms > Medium

DATE CVE VULNERABILITY TITLE RISK
2018-06-14 CVE-2018-12431 Cross-site Scripting vulnerability in Seacms 6.61
SeaCMS V6.61 has XSS via the site name parameter on an adm1n/admin_config.php page (aka a system management page).
network
low complexity
seacms CWE-79
4.8
4.8
2018-05-31 CVE-2018-11583 Cross-site Scripting vulnerability in Seacms 6.61
SeaCMS 6.61 has stored XSS in admin_collect.php via the siteurl parameter.
network
low complexity
seacms CWE-79
6.1
6.1