CVE-2025-3792

Medium CVSS: 5.1

A vulnerability, which was classified as critical, has been found in SeaCMS up to 13.3. This issue affects some unknown processing of the file /admin_link.php?action=delall. The manipulation of the argument e_id leads to sql injection. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used.

Vendor

Seacms

Product

Seacms

CWE

CWE-74

Yayın Tarihi

2025-04-18 15:15:59

Güncelleme

2025-07-15 20:06:10

Source Identifier

cna@vuldb.com

KEV Date Added

Kategoriler

CWE-74 Seacms MEDIUM Seacms 2025

Referanslar

https://github.com/FSRM1/CVE/blob/main/seacms_sql%E6%B3%A8%E5%85%A5.md https://vuldb.com/?ctiid.305615 https://vuldb.com/?id.305615 https://vuldb.com/?submit.554592

Benzer Kayıtlar

Medium

CVE-2020-36932

SeaCMS 11.1 contains a stored cross-site scripting vulnerability in the checkuser parameter of the admin settings page.…

Medium

CVE-2025-15003

A vulnerability was found in SeaCMS up to 13.3. The impacted element is an unknown function of the file admin_video.php.…

Medium

CVE-2025-15002

A vulnerability has been found in SeaCMS up to 13.3. The affected element is an unknown function of the file js/player/d…

Medium

CVE-2025-60449

An information disclosure vulnerability has been discovered in SeaCMS 13.1. The vulnerability exists in the admin_safe.p…

Medium

CVE-2025-11071

A security vulnerability has been detected in SeaCMS 13.3.20250820. Impacted is an unknown function of the file /admin_c…

Medium

CVE-2025-10662

A vulnerability has been found in SeaCMS up to 13.3. The impacted element is an unknown function of the file /admin_memb…