13 matches found
EUVD-2025-5355
Malicious code in bioql PyPI...
CVE-2025-44071
SeaCMS v13.3 was discovered to contain a remote code execution RCE vulnerability via the component phomebak.php. This vulnerability allows attackers to execute arbitrary code via a crafted request...
CVE-2025-44074
SeaCMS v13.3 was discovered to contain a SQL injection vulnerability via the component admintopic.php...
CVE-2025-44073
SeaCMS v13.3 was discovered to contain a SQL injection vulnerability via the component admincommentnews.php...
CVE-2025-44072
CVE-2025-44072 affects SeaCMS v13.3, with a SQL injection in the admin_manager.php component due to mishandling input. The CVSS v3.1 base score is 9.8 (CRITICAL), with NETWORK attack vector, LOW attack complexity, and no user interaction required. Impacts are HIGH on confidentiality, integrity, a...
CVE-2025-44071
SeaCMS v13.3 was discovered to contain a remote code execution RCE vulnerability via the component phomebak.php. This vulnerability allows attackers to execute arbitrary code via a crafted request...
CVE-2025-25802
SeaCMS v13.3 was discovered to contain a remote code execution RCE vulnerability via the component adminip.php...
CVE-2025-25796
SeaCMS v13.3 was discovered to contain a remote code execution RCE vulnerability via the component admintemplate.php...
CVE-2025-25792
SeaCMS v13.3 was discovered to contain a remote code execution RCE vulnerability via the isopen parameter at adminweixin.php...
CVE-2025-25797
SeaCMS v13.3 was discovered to contain a remote code execution RCE vulnerability via the component adminsmtp.php...
SeaCMS 安全漏洞
SeaCMS is a free, open source web content management system written in PHP by SeaCMS, Inc. The system is primarily designed to manage video-on-demand resources. A security vulnerability exists in SeaCMS v13.3, which stems from a remote code execution issue in the adminfiles.php component...
CVE-2025-25802
SeaCMS v13.3 was discovered to contain a remote code execution RCE vulnerability via the component adminip.php...
CVE-2025-25793
SeaCMS v13.3 contains a remote code execution (RCE) vulnerability in the admin_notify.php component. The CVE-2025-25793 entry states this affects SeaCMS v13.3 and identifies an RCE impact with a CVSS 3.1 base score of 5.1 (Medium). Attack vector is LOCAL with Low attack complexity, requiring HIGH...