4 matches found
CVE-2024-40520
SeaCMS 12.9 has a remote code execution vulnerability. The vulnerability is caused by adminconfigmark.php directly splicing and writing the user input data into incphotowatermarkconfig.php without processing it, which allows authenticated attackers to exploit the vulnerability to execute arbitrar...
CVE-2024-40520
SeaCMS 12.9 has a remote code execution vulnerability. The vulnerability is caused by adminconfigmark.php directly splicing and writing the user input data into incphotowatermarkconfig.php without processing it, which allows authenticated attackers to exploit the vulnerability to execute arbitrar...
CVE-2024-40520
SeaCMS 12.9 has a remote code execution vulnerability. The vulnerability is caused by adminconfigmark.php directly splicing and writing the user input data into incphotowatermarkconfig.php without processing it, which allows authenticated attackers to exploit the vulnerability to execute arbitrar...
CVE-2024-40520
SeaCMS 12.9 is affected by CVE-2024-40520 due to admin_config_mark.php writing unprocessed user input into inc_photowatermark_config.php, enabling authenticated attackers to achieve remote code execution and gain system permissions. Public indications across sources confirm the vulnerability in S...