Access Control Flaw in SeaCMS Version 13.1 by SeaCMS
CVE-2024-54880
Currently unrated
Summary
SeaCMS version 13.1 contains a vulnerability due to incorrect access control, allowing malicious actors to exploit a logic flaw. This vulnerability enables any user to register accounts in bulk, leading to potential abuse of the system, unauthorized access to sensitive data, and disruption of services. Organizations utilizing SeaCMS are advised to assess their systems and implement necessary updates to mitigate the risks associated with this flaw.
References
Timeline
Vulnerability published