CVE-2024-7162
SeaCMS 12.9/13.0 is affected by a cross-site scripting (XSS) vulnerability in the unknown functionality of js/player/dmplayer/admin/post.php?act=setting, triggered by manipulating the yzm parameter. The issue can be exploited remotely and has had public disclosure. Affected component: the post.ph...