Today > vulnerabilities   -   You can now download lists of IOCs here!

CVE-2024-50808

Nov. 12, 2024, 1:56 p.m.

Tags

cve@mitre.org
2024-11-08
CVE-2024-50808

Product(s) Impacted

SeaCMS

  • 13.1

Description

SeaCms 13.1 is vulnerable to code injection in the notification module of the member message notification module in the backend user module, due to unsafe handling of the "notify" variable in admin_notify.php.

Weaknesses

Date

Published: Nov. 8, 2024, 9:15 p.m.

Last Modified: Nov. 12, 2024, 1:56 p.m.

Status : Awaiting Analysis

CVE has been recently published to the CVE List and has been received by the NVD.

More info

Source

cve@mitre.org

References

http://seacms.com/ cve@mitre.org
https://github.com/ cve@mitre.org