Seeddms: >> Seeddms >> 6.0.32 Security Vulnerabilities
A vulnerability in SeedDMS 6.0.32 allows an attacker with admin privileges to execute arbitrary PHP code by exploiting the zip import functionality in the Extension Manager.
CVSS Score
7.2
EPSS Score
0.001
Published
2025-05-21
A stored cross-site scripting (XSS) vulnerability exists in SeedDMS 6.0.32. This vulnerability allows an attacker to inject malicious JavaScript payloads by creating a document with an XSS payload as the document name.
CVSS Score
5.4
EPSS Score
0.001
Published
2025-05-21