6 matches found
EUVD-2025-204678
A vulnerability has been found in SeaCMS up to 13.3. The affected element is an unknown function of the file js/player/dmplayer/dmku/class/mysqli.class.php. Such manipulation of the argument page/limit leads to sql injection. The attack can be executed remotely. The exploit has been disclosed to...
CVE-2025-11071 SeaCMS Cron Task Management admin_cron.php sql injection
A security vulnerability has been detected in SeaCMS 13.3.20250820. Impacted is an unknown function of the file /admincron.php of the component Cron Task Management Module. The manipulation of the argument resourcefrom/collectID leads to sql injection. The attack can be initiated remotely. The...
SeaCMS SQL注入漏洞
SeaCMS is a free, open source web content management system written in PHP by SeaCMS, Inc. The system is primarily designed to manage video-on-demand resources. A SQL injection vulnerability exists in SeaCMS version 13.3.20250820, which stems from incorrect manipulation of the parameter...
SeaCMS 安全漏洞
SeaCMS is a free, open source web content management system written in PHP by SeaCMS, Inc. The system is primarily designed to manage video-on-demand resources. A security vulnerability exists in SeaCMS v12.9, which stems from improper handling of the id parameter in the...
CVE-2018-13445
An issue was discovered in SeaCMS 6.61. There is a CSRF vulnerability that can add a user account via adm1n/adminmanager.php?action=add...
Arbitrary Code Write Vulnerability in SeaCMS admin/admin_weixin.php File
SeaCMS is a free and open source web content management system written in PHP. The system has been designed primarily to manage video-on-demand resources. An arbitrary code write vulnerability exists in the admin/adminweixin.php file in SeaCMS version v6.5.8, which can be exploited by an attacker...