4 matches found
CVE-2024-54879
SeaCMS V13.1 is vulnerable to Incorrect Access Control. A logic flaw can be exploited by an attacker to allow any user to recharge members indefinitely...
CVE-2024-54879
SeaCMS V13.1 is vulnerable to Incorrect Access Control. A logic flaw can be exploited by an attacker to allow any user to recharge members indefinitely...
PT-2025-3082 · Seacms · Seacms
Name of the Vulnerable Software and Affected Versions: SeaCMS version 13.1 Description: The issue is related to incorrect access control, allowing an attacker to exploit a logic flaw and enable any user to recharge members indefinitely. Recommendations: For SeaCMS version 13.1, consider restricti...
CVE-2024-54879
SeaCMS v13.1 is affected by an Incorrect Access Control flaw in the membership recharge logic, enabling any user to indefinitely recharge members. Root cause: a logical access-control weakness in the recharge functionality. Documented impact: potential unauthorized recharges; CVSS v3.1 base score...