CNNVD-202601-4964 Information

CNNVD ID

CNNVD-202601-4964

Related CVE

CVE-2026-1552

• CNNVD Published: 2026-01-29

Description (Chinese)

SEMCMS是SEMCMS开源的一款支持多语言的外贸网站内容管理系统(CMS)。 SEMCMS 5.0版本存在SQL注入漏洞，该漏洞源于对文件/SEMCMS_Info.php中参数searchml的错误操作，可能导致SQL注入。

Description (English)

SEMCMS is an open-source section of SEMCMS that supports a multilingual content management system for foreign trade. Version 5.0 of SEMCMS has an injection loophole in SQL, which results from an error in the searchml parameter in document/SEMCMS Info.php, which may result in SQL injection.

Hazard Level

High

Vulnerability Type

SQL注入

Affected Vendor

SEMCMS

Published

2026-01-29

Last Modified

2026-02-24

References

https://github.com/Sqli22/Sqli/issues/4 https://vuldb.com/?ctiid.343248 https://vuldb.com/?id.343248 https://vuldb.com/?submit.740549