Seacms: Security Vulnerabilities
Seacms <=13.3 is vulnerable to SQL Injection in admin_reslib.php.
CVSS Score
9.8
EPSS Score
0.001
Published
2025-02-25
Seacms <=13.3 is vulnerable to SQL Injection in admin_zyk.php.
CVSS Score
9.8
EPSS Score
0.001
Published
2025-02-25
Seacms <13.3 is vulnerable to SQL Injection in admin_pay.php.
CVSS Score
9.8
EPSS Score
0.001
Published
2025-02-25
Seacms <=13.3 is vulnerable to SQL Injection in admin_type_news.php.
CVSS Score
9.8
EPSS Score
0.001
Published
2025-02-25
Seacms <=13.3 is vulnerable to SQL Injection in admin_collect_news.php.
CVSS Score
6.5
EPSS Score
0.0
Published
2025-02-25
Seacms <=13.3 is vulnerable to SQL Injection in admin_collect.php that allows an authenticated attacker to exploit the database.
CVSS Score
8.8
EPSS Score
0.001
Published
2025-02-25
SQL Injection vulnerability in SeaCMS v.13.2 and before allows a remote attacker to execute arbitrary code via the DoTranExecSql parameter in the phome.php component.
CVSS Score
9.8
EPSS Score
0.003
Published
2025-02-24
Seacms <=13.3 is vulnerable to SQL Injection in admin_members.php.
CVSS Score
9.8
EPSS Score
0.001
Published
2025-02-24
SeaCMS V13.1 is vulnerable to Incorrect Access Control. A logic flaw can be exploited by an attacker to allow any user to register accounts in bulk.
CVSS Score
9.1
EPSS Score
0.021
Published
2025-01-06
SeaCMS V13.1 is vulnerable to Incorrect Access Control. A logic flaw can be exploited by an attacker to allow any user to recharge members indefinitely.
CVSS Score
9.1
EPSS Score
0.021
Published
2025-01-06