Описание
SeaCMS v12.9 has an unauthorized SQL injection vulnerability. The vulnerability is caused by the SQL injection through the cid parameter at /js/player/dmplayer/dmku/index.php?ac=edit, which can cause sensitive database information to be leaked.
Ссылки
- ExploitIssue Tracking
- ExploitIssue Tracking
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:a:seacms:seacms:12.9:*:*:*:*:*:*:*
EPSS
Процентиль: 29%
0.00107
Низкий
7.5 High
CVSS3
Дефекты
CWE-89
CWE-89
Связанные уязвимости
CVSS3: 7.5
github
больше 1 года назад
SeaCMS v12.9 has an unauthorized SQL injection vulnerability. The vulnerability is caused by the SQL injection through the cid parameter at /js/player/dmplayer/dmku/index.php?ac=edit, which can cause sensitive database information to be leaked.
EPSS
Процентиль: 29%
0.00107
Низкий
7.5 High
CVSS3
Дефекты
CWE-89
CWE-89