4 matches found
CVE-2024-6416
A vulnerability was found in SeaCMS 12.9. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /js/player/dmplayer/dmku/?ac=edit. The manipulation of the argument cid with the input select0fromselectsleep10v leads to sql injection. The attack ca...
CVE-2024-6416
A vulnerability was found in SeaCMS 12.9. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /js/player/dmplayer/dmku/?ac=edit. The manipulation of the argument cid with the input select0fromselectsleep10v leads to sql injection. The attack ca...
CVE-2024-6416
SeaCMS 12.9 is affected by a remote SQL injection vulnerability in /js/player/dmplayer/dmku/?ac=edit, caused by manipulating the cid parameter (example payload: (select(0)from(select(sleep(10)))v)). Multiple trusted sources corroborate that this vulnerability can be exploited remotely and that th...
CVE-2024-6416 SeaCMS sql injection
A vulnerability was found in SeaCMS 12.9. It has been declared as critical. Affected by this vulnerability is an unknown functionality of the file /js/player/dmplayer/dmku/?ac=edit. The manipulation of the argument cid with the input select0fromselectsleep10v leads to sql injection. The attack ca...