CNNVD-202506-2100 Information
CNNVD ID
CNNVD-202506-2100
Related CVE
- CNNVD Published: 2025-06-17
Description (Chinese)
SeaCMS是海洋CMS(SeaCMS)公司的一套使用PHP编写的免费、开源的网站内容管理系统。该系统主要被设计用来管理视频点播资源。 SeaCMS 12.9版本存在安全漏洞,该漏洞源于admin_datarelate.php组件容易受到SQL注入攻击,可能导致敏感信息泄露。
Description (English)
SeaCMS is a free, open-source web content management system developed by SeaCMS using PHP. The system is primarily designed to manage video on-demand resources. The SeaCMS version 12.9 contains a security loophole that originates from the vulnerability of the admin datarate.php component to SQL injections, which may lead to the disclosure of sensitive information.
Hazard Level
High
Vulnerability Type
SQL注入
Affected Vendor
海洋CMS
Published
2025-06-17
Last Modified
2026-02-24
References
https://gist.github.com/Tddddddddd/14cec7e85025fd566f877604ba3d2220 https://github.com/seacms-net/CMS/issues/20 https://access.redhat.com/security/cve/cve-2024-40570 https://nvd.nist.gov/vuln/detail/CVE-2024-40570