Lucene search
K

18 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2024-52687

Malicious code in bioql PyPI...

9.1CVSS6.6AI score0.00908EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2024-52688

Malicious code in bioql PyPI...

9.1CVSS6.6AI score0.00884EPSS
Exploits1References2
RedhatCVE
RedhatCVE
added 2025/05/23 10:31 a.m.8 views

CVE-2024-44916

Vulnerability in adminip.php in Seacms v13.1, when action=set, allows attackers to control IP parameters that are written to the data/admin/ip.php file and could result in arbitrary command execution...

7.2CVSS7.2AI score0.01172EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 6:58 a.m.10 views

CVE-2024-54879

SeaCMS V13.1 is vulnerable to Incorrect Access Control. A logic flaw can be exploited by an attacker to allow any user to recharge members indefinitely...

9.1CVSS6.8AI score0.00908EPSS
Exploits1References1
Cvelist
Cvelist
added 2025/01/06 12:0 a.m.18 views

CVE-2024-54879

SeaCMS V13.1 is vulnerable to Incorrect Access Control. A logic flaw can be exploited by an attacker to allow any user to recharge members indefinitely...

0.00908EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2025/01/06 12:0 a.m.11 views

CVE-2024-54879

SeaCMS V13.1 is vulnerable to Incorrect Access Control. A logic flaw can be exploited by an attacker to allow any user to recharge members indefinitely...

6.8AI score0.00908EPSS
Exploits1References2
Cvelist
Cvelist
added 2025/01/06 12:0 a.m.26 views

CVE-2024-54880

SeaCMS V13.1 is vulnerable to Incorrect Access Control. A logic flaw can be exploited by an attacker to allow any user to register accounts in bulk...

0.00884EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2025/01/06 12:0 a.m.15 views

CVE-2024-54880

SeaCMS V13.1 is vulnerable to Incorrect Access Control. A logic flaw can be exploited by an attacker to allow any user to register accounts in bulk...

7AI score0.00884EPSS
Exploits1References2
NVD
NVD
added 2024/09/09 4:15 p.m.25 views

CVE-2024-44720

SeaCMS v13.1 was discovered to an arbitrary file read vulnerability via the component adminsafe.php...

7.5CVSS0.00675EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/09/09 12:0 a.m.18 views

CVE-2024-44721

SeaCMS v13.1 was discovered to a Server-Side Request Forgery SSRF via the url parameter at /adminreslib.php...

7.2AI score0.00611EPSS
Exploits1References1
Cvelist
Cvelist
added 2024/09/09 12:0 a.m.28 views

CVE-2024-44721

SeaCMS v13.1 was discovered to a Server-Side Request Forgery SSRF via the url parameter at /adminreslib.php...

0.00611EPSS
Exploits1References1
CVE
CVE
added 2024/09/09 12:0 a.m.53 views

CVE-2024-44721

SeaCMS v13.1 contains a Server-Side Request Forgery (SSRF) vulnerability in the url parameter of the /admin_reslib.php endpoint. The CVSS v3.1 vector (AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H) yields a base score of 9.8 (CRITICAL) with NETWORK attack, no authentication, and full impact on confidential...

9.8CVSS7.3AI score0.00611EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2024/09/09 12:0 a.m.19 views

CVE-2024-44720

SeaCMS v13.1 was discovered to an arbitrary file read vulnerability via the component adminsafe.php...

0.00675EPSS
Exploits1References1
Vulnrichment
Vulnrichment
added 2024/09/09 12:0 a.m.16 views

CVE-2024-44720

SeaCMS v13.1 was discovered to an arbitrary file read vulnerability via the component adminsafe.php...

7.3AI score0.00675EPSS
Exploits1References1
NVD
NVD
added 2024/08/30 4:15 p.m.26 views

CVE-2024-44916

Vulnerability in adminip.php in Seacms v13.1, when action=set, allows attackers to control IP parameters that are written to the data/admin/ip.php file and could result in arbitrary command execution...

7.2CVSS0.01172EPSS
Exploits1References2
Vulnrichment
Vulnrichment
added 2024/08/30 12:0 a.m.16 views

CVE-2024-44916

Vulnerability in adminip.php in Seacms v13.1, when action=set, allows attackers to control IP parameters that are written to the data/admin/ip.php file and could result in arbitrary command execution...

7.3AI score0.01172EPSS
Exploits1References3
Cvelist
Cvelist
added 2024/08/30 12:0 a.m.31 views

CVE-2024-44916

Vulnerability in adminip.php in Seacms v13.1, when action=set, allows attackers to control IP parameters that are written to the data/admin/ip.php file and could result in arbitrary command execution...

0.01172EPSS
Exploits1References2
CVE
CVE
added 2024/08/30 12:0 a.m.48 views

CVE-2024-44916

This CVE affects SeaCMS Seacms v13.1, specifically the admin_ip.php page. When action=set is used, an attacker can control IP parameters written to data/admin/ip.php, enabling arbitrary command execution. The vulnerability is evidenced across multiple sources (NVD/Red Hat/CNNVD) with CVSSv3.1 bas...

7.2CVSS7.5AI score0.01172EPSS
Exploits1References2Affected Software1
Rows per page
Query Builder