CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

RedhatCVE•added 2025/05/22 4:36 p.m.•5 views

CVE-2020-28846

Cross Site Request Forgery CSRF vulnerability exists in SeaCMS 10.7 in adminmanager.php, which could let a malicious user add an admin account...

6.5CVSS7.1AI score0.00117EPSS

Exploits1

CVE•added 2025/05/05 12:0 a.m.•67 views

CVE-2025-44072

CVE-2025-44072 affects SeaCMS v13.3, with a SQL injection in the admin_manager.php component due to mishandling input. The CVSS v3.1 base score is 9.8 (CRITICAL), with NETWORK attack vector, LOW attack complexity, and no user interaction required. Impacts are HIGH on confidentiality, integrity, a...

9.8CVSS8.3AI score0.00274EPSS

Exploits1References1Affected Software1

Vulnrichment•added 2025/05/05 12:0 a.m.•7 views

CVE-2025-44072

SeaCMS v13.3 was discovered to contain a SQL injection vulnerability via the component adminmanager.php...

7.9AI score0.00274EPSS

Exploits1References1

ATTACKERKB•added 2023/09/25 11:15 p.m.•1 views

CVE-2023-43278

A Cross-Site Request Forgery CSRF in adminmanager.php of Seacms up to v12.8 allows attackers to arbitrarily add an admin account...

8.8CVSS5.7AI score0.0023EPSS

Exploits0References4

OSV•added 2023/09/25 11:15 p.m.•0 views

CVE-2023-43278

A Cross-Site Request Forgery CSRF in adminmanager.php of Seacms up to v12.8 allows attackers to arbitrarily add an admin account...

8.8CVSS5.8AI score0.0023EPSS

Exploits0References3

Prion•added 2023/09/25 11:15 p.m.•13 views

Cross site request forgery (csrf)

A Cross-Site Request Forgery CSRF in adminmanager.php of Seacms up to v12.8 allows attackers to arbitrarily add an admin account...

6.8CVSS8.7AI score0.0023EPSS

Exploits0References3Affected Software1

Vulnrichment•added 2023/09/25 12:0 a.m.•8 views

CVE-2023-43278

A Cross-Site Request Forgery CSRF in adminmanager.php of Seacms up to v12.8 allows attackers to arbitrarily add an admin account...

7AI score0.0023EPSS

Exploits0References3

CVE•added 2023/09/25 12:0 a.m.•56 views

CVE-2023-43278

SeaCMS CVE-2023-43278 is a CSRF flaw in admin_manager.php affecting SeaCMS/Seacms up to version 12.8, enabling attackers to arbitrarily add an admin account. Root cause: CSRF in admin_manager.php. Impact: attacker could gain admin privileges; exploitation details are not provided in the documents...

8.8CVSS8.7AI score0.0023EPSS

Exploits0References3Affected Software1

NVD•added 2021/08/17 4:15 p.m.•9 views

CVE-2020-28846

Cross Site Request Forgery CSRF vulnerability exists in SeaCMS 10.7 in adminmanager.php, which could let a malicious user add an admin account...

6.5CVSS0.00117EPSS

Exploits1References1

CVE•added 2021/08/17 3:49 p.m.•34 views

CVE-2020-28846

CVE-2020-28846 affects SeaCMS 10.7 with a Cross‑Site Request Forgery vulnerability in admin_manager.php, which could allow a malicious user to add an administrator account. The connected records consistently describe the CSRF flaw in SeaCMS 10.7 and its impact but do not provide specific technica...

6.5CVSS6.5AI score0.00117EPSS

Exploits1References1Affected Software1

NVD•added 2018/07/08 4:29 p.m.•10 views

CVE-2018-13444

An issue was discovered in SeaCMS 6.61. There is a CSRF vulnerability that can add an admin account via adm1n/adminmanager.php?action=save&id=2...

8.8CVSS8.7AI score0.00134EPSS

Exploits1References1