Filtered by vendor Sem-cms
Subscriptions
Filtered by product Semcms
Subscriptions
Total
49 CVE
| CVE | Vendors | Products | Updated | CVSS v3.1 |
|---|---|---|---|---|
| CVE-2024-52725 | 1 Sem-cms | 1 Semcms | 2025-04-04 | 4.9 Medium |
| SemCms v4.8 was discovered to contain a SQL injection vulnerability. This allows an attacker to execute arbitrary code via the ldgid parameter in the SEMCMS_SeoAndTag.php component. | ||||
| CVE-2024-53502 | 1 Sem-cms | 1 Semcms | 2025-04-04 | 3.8 Low |
| Seecms v4.8 was discovered to contain a SQL injection vulnerability in the SEMCMS_SeoAndTag.php page. | ||||
| CVE-2024-46103 | 1 Sem-cms | 1 Semcms | 2025-04-04 | 9.8 Critical |
| SEMCMS 4.8 is vulnerable to SQL Injection via SEMCMS_Main.php. | ||||
| CVE-2024-30938 | 1 Sem-cms | 1 Semcms | 2025-04-04 | 9.8 Critical |
| SQL Injection vulnerability in SEMCMS v.4.8 allows a remote attacker to obtain sensitive information via the ID parameter in the SEMCMS_User.php component. | ||||
| CVE-2024-32409 | 1 Sem-cms | 1 Semcms | 2025-04-04 | 7.1 High |
| An issue in SEMCMS v.4.8 allows a remote attacker to execute arbitrary code via a crafted script. | ||||
| CVE-2024-36801 | 1 Sem-cms | 1 Semcms | 2025-04-03 | 5.9 Medium |
| A SQL injection vulnerability in SEMCMS v.4.8, allows a remote attacker to obtain sensitive information via the lgid parameter in Download.php. | ||||
| CVE-2024-36800 | 1 Sem-cms | 1 Semcms | 2025-04-03 | 7.5 High |
| A SQL injection vulnerability in SEMCMS v.4.8, allows a remote attacker to obtain sensitive information via the ID parameter in Download.php. | ||||
| CVE-2024-25422 | 1 Sem-cms | 1 Semcms | 2025-03-29 | 9.8 Critical |
| SQL Injection vulnerability in SEMCMS v.4.8 allows a remote attacker to execute arbitrary code and obtain sensitive information via the SEMCMS_Menu.php component. | ||||
| CVE-2023-30090 | 1 Sem-cms | 1 Semcms | 2025-01-29 | 9.8 Critical |
| Semcms Shop v4.2 was discovered to contain an arbitrary file uplaod vulnerability via the component SEMCMS_Upfile.php. This vulnerability allows attackers to execute arbitrary code via uploading a crafted PHP file. | ||||
| CVE-2023-31707 | 1 Sem-cms | 1 Semcms | 2025-01-21 | 9.8 Critical |
| SEMCMS 1.5 is vulnerable to SQL Injection via Ant_Rponse.php. | ||||
| CVE-2020-18432 | 1 Sem-cms | 1 Semcms | 2024-11-26 | 9.8 Critical |
| File Upload vulnerability in SEMCMS PHP 3.7 allows remote attackers to upload arbitrary files and gain escalated privileges. | ||||
| CVE-2023-50563 | 1 Sem-cms | 1 Semcms | 2024-11-21 | 9.8 Critical |
| Semcms v4.8 was discovered to contain a SQL injection vulnerability via the AID parameter at SEMCMS_Function.php. | ||||
| CVE-2023-37647 | 1 Sem-cms | 1 Semcms | 2024-11-21 | 9.8 Critical |
| SEMCMS v1.5 was discovered to contain a SQL injection vulnerability via the id parameter at /Ant_Suxin.php. | ||||
| CVE-2020-23564 | 1 Sem-cms | 1 Semcms | 2024-11-21 | 7.2 High |
| File Upload vulnerability in SEMCMS 3.9 allows remote attackers to run arbitrary code via SEMCMS_Upfile.php. | ||||
| CVE-2020-18081 | 1 Sem-cms | 1 Semcms | 2024-11-21 | 7.5 High |
| The checkuser function of SEMCMS 3.8 was discovered to contain a vulnerability which allows attackers to obtain the password in plaintext through a SQL query. | ||||
| CVE-2020-18078 | 1 Sem-cms | 1 Semcms | 2024-11-21 | 9.8 Critical |
| A vulnerability in /include/web_check.php of SEMCMS v3.8 allows attackers to reset the Administrator account's password. | ||||
| CVE-2019-11518 | 1 Sem-cms | 1 Semcms | 2024-11-21 | N/A |
| An issue was discovered in SEMCMS 3.8. SEMCMS_Inquiry.php allows AID[] SQL Injection because the class.phpmailer.php inject_check_sql protection mechanism is incomplete. | ||||
| CVE-2018-20017 | 1 Sem-cms | 1 Semcms | 2024-11-21 | N/A |
| SEMCMS 3.5 has XSS via the first text box to the SEMCMS_Main.php URI. | ||||
| CVE-2018-18841 | 1 Sem-cms | 1 Semcms | 2024-11-21 | N/A |
| XSS was discovered in SEMCMS PHP V3.4 via the SEMCMS_SeoAndTag.php?Class=edit&CF=SeoAndTag tag_indexkey parameter. | ||||
| CVE-2018-18840 | 1 Sem-cms | 1 Semcms | 2024-11-21 | N/A |
| XSS was discovered in SEMCMS PHP V3.4 via the SEMCMS_SeoAndTag.php?Class=edit&CF=SeoAndTag tag_indexmetatit parameter. | ||||