ГлавнаяУязвимости → CVE-2024-29275
9.8критическая

CVE-2024-29275

Описание

SQL injection vulnerability in SeaCMS version 12.9, allows remote unauthenticated attackers to execute arbitrary code and obtain sensitive information via the id parameter in class.php.

Затрагиваемое ПО
Seacms Seacms
CVSS
Балл9.8 — критическая
ВекторCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H
Источники
https://github.com/seacms-net/CMS/issues/15https://github.com/seacms-net/CMS/issues/15