seacms

Top products

The 15 most recently published vulnerabilities affecting seacms.

• CVE-2020-36932Seacms 11.1 - 'checkuser' Stored XSS6.1Jan 25, 2026
• CVE-2025-15003SeaCMS admin_video.php sql injection4.7Dec 21, 2025
• CVE-2025-15002SeaCMS mysqli.class.php sql injection7.3Dec 21, 2025
• CVE-2025-60449An information disclosure vulnerability has been discovered in SeaCMS 13.1. The vulnerability exists in the admin_safe.php component located in the /btcoan/ directory. This security flaw allows aut...4.9Oct 3, 2025
• CVE-2025-11071SeaCMS Cron Task Management admin_cron.php sql injection4.7Sep 27, 2025
• CVE-2025-10662SeaCMS admin_members.php sql injection4.7Sep 18, 2025
• CVE-2025-50592Cross site scripting vulnerability in seacms before 13.2 via the vid parameter to Upload/js/player/dmplayer/player.5.4Aug 5, 2025
• CVE-2025-6864SeaCMS admin_type.php cross-site request forgery4.3Jun 29, 2025
• CVE-2024-40570SQL Injection vulnerability in SeaCMS v.12.9 allows a remote attacker to obtain sensitive information via the admin_datarelate.php component.6.5Jun 17, 2025
• CVE-2025-44073SeaCMS v13.3 was discovered to contain a SQL injection vulnerability via the component admin_comment_news.php.9.8May 6, 2025
• CVE-2025-4257SeaCMS admin_pay.php cross site scripting3.5May 5, 2025
• CVE-2025-4256SeaCMS admin_paylog.php cross site scripting3.5May 5, 2025
• CVE-2025-44074SeaCMS v13.3 was discovered to contain a SQL injection vulnerability via the component admin_topic.php.9.8May 5, 2025
• CVE-2025-44072SeaCMS v13.3 was discovered to contain a SQL injection vulnerability via the component admin_manager.php.9.8May 5, 2025
• CVE-2025-44071SeaCMS v13.3 was discovered to contain a remote code execution (RCE) vulnerability via the component phomebak.php. This vulnerability allows attackers to execute arbitrary code via a crafted request.9.8May 5, 2025