CVE-2024-40570

Medium CVSS: 6.5

SQL Injection vulnerability in SeaCMS v.12.9 allows a remote attacker to obtain sensitive information via the admin_datarelate.php component.

Vendor

Product

CWE

Yayın Tarihi

2025-06-17 20:15:30

Güncelleme

2025-06-23 13:59:30

Source Identifier

cve@mitre.org

KEV Date Added

CWE-89 Seacms MEDIUM Seacms 2025

https://gist.github.com/Tddddddddd/14cec7e85025fd566f877604ba3d2220 https://github.com/seacms-net/CMS/issues/20 https://github.com/seacms-net/CMS/issues/20

Medium

CVE-2020-36932

SeaCMS 11.1 contains a stored cross-site scripting vulnerability in the checkuser parameter of the admin settings page.…

Medium

CVE-2025-15003

A vulnerability was found in SeaCMS up to 13.3. The impacted element is an unknown function of the file admin_video.php.…

Medium

CVE-2025-15002

A vulnerability has been found in SeaCMS up to 13.3. The affected element is an unknown function of the file js/player/d…

Medium

CVE-2025-60449

An information disclosure vulnerability has been discovered in SeaCMS 13.1. The vulnerability exists in the admin_safe.p…

Medium

CVE-2025-11071

A security vulnerability has been detected in SeaCMS 13.3.20250820. Impacted is an unknown function of the file /admin_c…

Medium

CVE-2025-10662

A vulnerability has been found in SeaCMS up to 13.3. The impacted element is an unknown function of the file /admin_memb…