File Deletion Vulnerability in SeaCMS 12.9 Affects Admin Interface
CVE-2024-31611

9.1CRITICAL

Key Information:

Vendor
Seacms
Status
Seacms
Vendor
CVE Published:
10 June 2024

Summary

A vulnerability exists in SeaCMS version 12.9, which allows unauthorized file deletion through the admin_template.php script. This security flaw can potentially be exploited by attackers to remove critical files from the server, leading to potential data loss and impaired functionality. Users of SeaCMS 12.9 should implement immediate security measures to protect their systems and data.

References

https://github.com/ss122-0ss/seacms/blob/main/readme.md

CVSS V3.1

Score:
9.1
Severity:
CRITICAL
Confidentiality:
None
Integrity:
High
Availability:
None
Attack Vector:
Network
Attack Complexity:
Low
Privileges Required:
None
User Interaction:
None
Scope:
Unchanged

Timeline

  • Vulnerability published

.
CVE-2024-31611 : File Deletion Vulnerability in SeaCMS 12.9 Affects Admin Interface | SecurityVulnerability.io