Unrated severityNVD Advisory· Published Jul 12, 2024· Updated Aug 2, 2024
CVE-2024-40518
CVE-2024-40518
Description
SeaCMS 12.9 has a remote code execution vulnerability. The vulnerability is caused by admin_weixin.php directly splicing and writing the user input data into weixin.php without processing it, which allows authenticated attackers to exploit the vulnerability to execute arbitrary commands and obtain system permissions.
Affected products
2Patches
Vulnerability mechanics
References
1News mentions
0No linked articles in our index yet.