SEACMS-V210530 SQL vulnerability
DESCRIPTION
SEACMS is completely open source and free. Its official website https://www.seacms.net. SQL injection vulnerability was found in CMS background, injection point v_name
SEACMS-V210530 SQL vulnerability verification
injection point v_name
url:admin_ajax.php?action=checkrepeat&v_name=
V_name parameter concatenation.
\DB_MySQL::GetOne Bypassing SQL statement security checks
Vulnerability executed successfully



