Show filters
142 Total Results
Displaying 41-50 of 142
Sort by:
Attacker Value
Unknown
CVE-2023-44171
Disclosure Date: September 27, 2023 (last updated February 25, 2025)
SeaCMS V12.9 was discovered to contain an arbitrary file write vulnerability via the component admin_smtp.php.
0
Attacker Value
Unknown
CVE-2023-44170
Disclosure Date: September 27, 2023 (last updated February 25, 2025)
SeaCMS V12.9 was discovered to contain an arbitrary file write vulnerability via the component admin_ping.php.
0
Attacker Value
Unknown
CVE-2023-44169
Disclosure Date: September 27, 2023 (last updated February 25, 2025)
SeaCMS V12.9 was discovered to contain an arbitrary file write vulnerability via the component admin_notify.php.
0
Attacker Value
Unknown
CVE-2023-43222
Disclosure Date: September 27, 2023 (last updated February 25, 2025)
SeaCMS v12.8 has an arbitrary code writing vulnerability in the /jxz7g2/admin_ping.php file.
0
Attacker Value
Unknown
CVE-2023-43216
Disclosure Date: September 27, 2023 (last updated February 25, 2025)
SeaCMS V12.9 was discovered to contain an arbitrary file write vulnerability via the component admin_ip.php.
0
Attacker Value
Unknown
CVE-2023-43278
Disclosure Date: September 25, 2023 (last updated February 25, 2025)
A Cross-Site Request Forgery (CSRF) in admin_manager.php of Seacms up to v12.8 allows attackers to arbitrarily add an admin account.
0
Attacker Value
Unknown
CVE-2020-23564
Disclosure Date: August 05, 2023 (last updated February 25, 2025)
File Upload vulnerability in SEMCMS 3.9 allows remote attackers to run arbitrary code via SEMCMS_Upfile.php.
0
Attacker Value
Unknown
CVE-2023-37647
Disclosure Date: July 31, 2023 (last updated February 25, 2025)
SEMCMS v1.5 was discovered to contain a SQL injection vulnerability via the id parameter at /Ant_Suxin.php.
0
Attacker Value
Unknown
CVE-2023-37125
Disclosure Date: July 06, 2023 (last updated February 25, 2025)
A stored cross-site scripting (XSS) vulnerability in the Management Custom label module of SEACMS v12.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload.
0
Attacker Value
Unknown
CVE-2023-37124
Disclosure Date: July 06, 2023 (last updated February 25, 2025)
A stored cross-site scripting (XSS) vulnerability in the Site Setup module of SEACMS v12.1 allows attackers to execute arbitrary web scripts or HTML via a crafted payload.
0
