CVE-2025-44072

SeaCMS v13.3 was discovered to contain a SQL injection vulnerability via the component admin_manager.php.
Configurations

Configuration 1 (hide)

cpe:2.3:a:seacms:seacms:13.3:*:*:*:*:*:*:*

History

13 May 2025, 20:05

Type Values Removed Values Added
CPE cpe:2.3:a:seacms:seacms:13.3:*:*:*:*:*:*:*
First Time Seacms
Seacms seacms
References () https://github.com/202110420106/CVE/blob/master/seacms/seacms_manage_sql.md - () https://github.com/202110420106/CVE/blob/master/seacms/seacms_manage_sql.md - Exploit

07 May 2025, 14:13

Type Values Removed Values Added
Summary
  • (es) Se descubrió que SeaCMS v13.3 contiene una vulnerabilidad de inyección SQL a través del componente admin_manager.php.

06 May 2025, 04:16

Type Values Removed Values Added
CWE CWE-89
CVSS v2 : unknown
v3 : unknown
v2 : unknown
v3 : 9.8

05 May 2025, 22:15

Type Values Removed Values Added
New CVE

Information

Published : 2025-05-05 22:15

Updated : 2025-05-13 20:05


NVD link : CVE-2025-44072

Mitre link : CVE-2025-44072

CVE.ORG link : CVE-2025-44072


JSON object : View

Products Affected

seacms

  • seacms
CWE
CWE-89

Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection')