VYPR
Unrated severityOSV Advisory· Published Jan 25, 2026· Updated Apr 7, 2026

Seacms 11.1 - 'checkuser' Stored XSS

CVE-2020-36932

Description

SeaCMS 11.1 contains a stored cross-site scripting vulnerability in the checkuser parameter of the admin settings page. Attackers can inject malicious JavaScript payloads that will execute in users' browsers when the page is loaded.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Seacms/SeacmsOSV2 versions
    v11, v11.1+ 1 more
    • (no CPE)range: v11, v11.1
    • (no CPE)range: = 11.1

Patches

Vulnerability mechanics

References

3

News mentions

0

No linked articles in our index yet.