CVE-2018-14910
EUVD-2018-679203.08.2018, 19:29
SeaCMS v6.61 allows Remote Code execution by placing PHP code in an allowed IP address (aka ip) to /admin/admin_ip.php (aka /adm1n/admin_ip.php). The code is executed by visiting adm1n/admin_ip.php or data/admin/ip.php. This can also be exploited through CSRF.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| seacms | seacms | 6.61 |
𝑥
= Vulnerable software versions