5 matches found
CVE-2024-52725
SemCms v4.8 was discovered to contain a SQL injection vulnerability. This allows an attacker to execute arbitrary code via the ldgid parameter in the SEMCMSSeoAndTag.php component...
CVE-2024-52725
SemCms v4.8 was discovered to contain a SQL injection vulnerability. This allows an attacker to execute arbitrary code via the ldgid parameter in the SEMCMSSeoAndTag.php component...
SEMCMS 安全漏洞
SEMCMS is SEMCMS open source content management system CMS for foreign trade websites with multi-language support. A security vulnerability exists in SEMCMS v4.8, which stems from the inclusion of a SQL injection vulnerability that allows an attacker to execute arbitrary code via the ldgid...
PT-2024-35420 · Semcms · Semcms
Name of the Vulnerable Software and Affected Versions: SemCms version 4.8 Description: The issue allows an attacker to execute arbitrary code via the ldgid parameter in the SEMCMS SeoAndTag.php component. This is a SQL injection vulnerability. Recommendations: For SemCms version 4.8, consider...
CVE-2024-52725
SemCms v4.8 has a SQL injection in SEMCMS_SeoAndTag.php via the ldgid parameter, enabling arbitrary code execution. Root cause: SQLi in the affected component. Impact (per sources): potential code execution with high confidentiality impact; CVSS v3.1 base score 4.9 (MEDIUM). Exploitation details ...