GHSA-6vrf-q9q6-mv2r
GitHub Security Advisory
⚠ Unreviewed
HIGH
Has CVE
Advisory Details
SeaCMS 12.9 has a remote code execution vulnerability. The vulnerability is caused by admin_weixin.php directly splicing and writing the user input data into weixin.php without processing it, which allows authenticated attackers to exploit the vulnerability to execute arbitrary commands and obtain system permissions.
Related CVEs
Key Information
7.5
/10
Dataset
Last updated: September 16, 2025 6:29 AM
Data from GitHub Advisory Database. This information is provided for research and educational purposes.