Syntax: kev:true severity:critical epss:>0.95 vendor:cisco patch:false
Filters
Severity
Exploitation
Data Source
Data Quality
Vendor
CWE — Weakness Type
Clear all
Top 20 matches Showing top matches — use filters or a more specific query to narrow
12 CRITICAL1 HIGH7 MEDIUM
CVE-2025-44072
CRITICAL CVSS 9.8
Find Similar
SeaCMS v13.3 was discovered to contain a SQL injection vulnerability via the component admin_manager.php.
seacms
NVD RRF 0.016
CVE-2025-44074
CRITICAL CVSS 9.8
Find Similar
SeaCMS v13.3 was discovered to contain a SQL injection vulnerability via the component admin_topic.php.
seacms
NVD RRF 0.016
CVE-2025-44073
CRITICAL CVSS 9.8
Find Similar
SeaCMS v13.3 was discovered to contain a SQL injection vulnerability via the component admin_comment_news.php.
seacms
NVD RRF 0.016
CVE-2025-25515
HIGH CVSS 8.8
Find Similar
Seacms <=13.3 is vulnerable to SQL Injection in admin_collect.php that allows an authenticated attacker to exploit the database.
seacms
NVD RRF 0.014
CVE-2024-44921
CRITICAL CVSS 9.8
Find Similar
SeaCMS v12.9 was discovered to contain a SQL injection vulnerability via the id parameter at /dmplayer/dmku/index.php?ac=del.
seacms
NVD RRF 0.014
CVE-2024-40570
MEDIUM CVSS 6.5
Find Similar
SQL Injection vulnerability in SeaCMS v.12.9 allows a remote attacker to obtain sensitive information via the admin_datarelate.php component.
seacms
NVD RRF 0.014
CVE-2025-25796
MEDIUM CVSS 5.1
Find Similar
SeaCMS v13.3 was discovered to contain a remote code execution (RCE) vulnerability via the component admin_template.php.
seacms
NVD RRF 0.013
CVE-2025-25802
MEDIUM CVSS 5.1
Find Similar
SeaCMS v13.3 was discovered to contain a remote code execution (RCE) vulnerability via the component admin_ip.php.
seacms
NVD RRF 0.013
CVE-2025-25813
MEDIUM CVSS 5.1
Find Similar
SeaCMS v13.3 was discovered to contain a remote code execution (RCE) vulnerability via the component admin_files.php.
seacms
NVD RRF 0.013
CVE-2025-15002
MEDIUM CVSS 5.5
Find Similar
A vulnerability has been found in SeaCMS up to 13.3. The affected element is an unknown function of the file js/player/dmplayer/dmku/class/mysqli.class.php. Such manipulation of the argument page/limi
seacms
NVD RRF 0.013
CVE-2025-25794
MEDIUM CVSS 5.1
Find Similar
SeaCMS v13.3 was discovered to contain a remote code execution (RCE) vulnerability via the component admin_ping.php.
seacms
NVD RRF 0.013
CVE-2025-22974
CRITICAL CVSS 9.8
Find Similar
SQL Injection vulnerability in SeaCMS v.13.2 and before allows a remote attacker to execute arbitrary code via the DoTranExecSql parameter in the phome.php component.
seacms
NVD RRF 0.013
Page 1+ Next →