High severity7.2NVD Advisory· Published Dec 12, 2017· Updated May 13, 2026

CVE-2017-17561

Description

SeaCMS 6.56 allows remote authenticated administrators to execute arbitrary PHP code via a crafted token field to admin/admin_ping.php, which interacts with data/admin/ping.php.

Affected products

Seacms Project/Seacms
cpe:2.3:a:seacms_project:seacms:6.56:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

www.jianshu.com/p/35af80b97ee6nvdExploitIssue TrackingThird Party Advisory
gist.github.com/WangYihang/9507e2efdceb67a5bc2761200f19f213nvdExploitIssue TrackingThird Party Advisory

News mentions

No linked articles in our index yet.

cvss	0.468
epss	0.001
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000