Semcms@4.8 Security Vulnerabilities and Issues — Semcms@4.8 CVE List

Lucene search

Sem-cmsSemcms4.8

16 matches found

CVE•added 2024/02/28 11:15 p.m.•7783 views

CVE-2024-25422

SQL Injection vulnerability in SEMCMS v.4.8 allows a remote attacker to execute arbitrary code and obtain sensitive information via the SEMCMS_Menu.php component.

9.8CVSS8.2AI score0.01454EPSS

CVE•added 2024/06/04 1:15 p.m.•62 views

CVE-2024-36801

A SQL injection vulnerability in SEMCMS v.4.8, allows a remote attacker to obtain sensitive information via the lgid parameter in Download.php.

5.9CVSS7.6AI score0.00466EPSS

CVE•added 2024/03/29 3:15 p.m.•56 views

CVE-2024-28405

SEMCMS 4.8 is vulnerable to Incorrect Access Control. The code installs SEMCMS_Funtion.php before checking if the admin is a valid user in the admin page because authentication function is called from there, users gain admin privileges.

7.2CVSS7.3AI score0.0014EPSS

CVE•added 2024/05/07 3:15 p.m.•56 views

CVE-2024-4595

A vulnerability has been found in SEMCMS up to 4.8 and classified as critical. Affected by this vulnerability is the function locate of the file function.php. The manipulation leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. ...

6.5CVSS7.3AI score0.00067EPSS

CVE•added 2024/04/03 4:15 a.m.•54 views

CVE-2024-31010

SQL injection vulnerability in SEMCMS v.4.8, allows a remote attacker to obtain sensitive information via the ID parameter in Banner.php.

7.5CVSS7.3AI score0.00079EPSS

CVE•added 2024/04/03 4:15 a.m.•53 views

CVE-2024-31012

An issue was discovered in SEMCMS v.4.8, allows remote attackers to execute arbitrary code, escalate privileges, and obtain sensitive information via the upload.php file.

9.8CVSS7.5AI score0.02899EPSS

CVE•added 2024/11/20 5:15 p.m.•51 views

CVE-2024-52725

SemCms v4.8 was discovered to contain a SQL injection vulnerability. This allows an attacker to execute arbitrary code via the ldgid parameter in the SEMCMS_SeoAndTag.php component.

4.9CVSS8.8AI score0.00143EPSS

CVE•added 2024/12/03 10:15 p.m.•47 views

CVE-2024-53502

Seecms v4.8 was discovered to contain a SQL injection vulnerability in the SEMCMS_SeoAndTag.php page.

3.8CVSS8.4AI score0.00044EPSS

CVE•added 2024/04/03 4:15 a.m.•45 views

CVE-2024-31009

SQL injection vulnerability in SEMCMS v.4.8, allows a remote attacker to obtain sensitive information via lgid parameter in Banner.php.

6.5CVSS7.3AI score0.00074EPSS

CVE•added 2024/04/19 4:15 p.m.•45 views

CVE-2024-32409

An issue in SEMCMS v.4.8 allows a remote attacker to execute arbitrary code via a crafted script.

7.1CVSS7.8AI score0.01566EPSS

CVE•added 2024/04/19 12:15 a.m.•43 views

CVE-2024-30938

SQL Injection vulnerability in SEMCMS v.4.8 allows a remote attacker to obtain sensitive information via the ID parameter in the SEMCMS_User.php component.

9.8CVSS7.5AI score0.00434EPSS

CVE•added 2024/01/10 8:15 a.m.•41 views

CVE-2023-48864

SEMCMS v4.8 was discovered to contain a SQL injection vulnerability via the languageID parameter in /web_inc.php.

7.5CVSS7.7AI score0.00117EPSS

CVE•added 2025/01/08 11:15 p.m.•39 views

CVE-2024-13193

A vulnerability has been found in SEMCMS up to 4.8 and classified as critical. Affected by this vulnerability is an unknown functionality of the file SEMCMS_Images.php of the component Image Library Management Page. The manipulation leads to sql injection. The attack can be launched remotely. The e...

6.5CVSS6.7AI score0.00044EPSS

CVE•added 2024/06/04 1:15 p.m.•34 views

CVE-2024-36800

A SQL injection vulnerability in SEMCMS v.4.8, allows a remote attacker to obtain sensitive information via the ID parameter in Download.php.

7.5CVSS7.6AI score0.00036EPSS

CVE•added 2024/09/20 9:15 p.m.•34 views

CVE-2024-46103

SEMCMS 4.8 is vulnerable to SQL Injection via SEMCMS_Main.php.

9.8CVSS8.4AI score0.00143EPSS

CVE•added 2023/12/14 3:15 p.m.•32 views

CVE-2023-50563

Semcms v4.8 was discovered to contain a SQL injection vulnerability via the AID parameter at SEMCMS_Function.php.

9.8CVSS9.7AI score0.00108EPSS