Loading HuntDB...

GHSA-6vrf-q9q6-mv2r

GitHub Security Advisory

⚠ Unreviewed HIGH Has CVE

Advisory Details

SeaCMS 12.9 has a remote code execution vulnerability. The vulnerability is caused by admin_weixin.php directly splicing and writing the user input data into weixin.php without processing it, which allows authenticated attackers to exploit the vulnerability to execute arbitrary commands and obtain system permissions.

Related CVEs

Key Information

GHSA ID
GHSA-6vrf-q9q6-mv2r
Published
July 12, 2024 6:31 PM
Last Modified
July 12, 2024 9:31 PM
CVSS Score
7.5 /10
Primary Ecosystem
Unknown
Primary Package
Unknown
GitHub Reviewed
✗ No

Dataset

Last updated: September 16, 2025 6:29 AM

Data from GitHub Advisory Database. This information is provided for research and educational purposes.