CVSS Score of 10 (low)


Published Jul 6, 2023
Updated: Jul 11, 2023


The CVE-2023-37124 vulnerability is a stored cross-site scripting (XSS) issue found in the Site Setup module of SEACMS v12.1. This vulnerability allows attackers to execute arbitrary web scripts or HTML by using a specially crafted payload. The affected products include SEACMS v12.1. To remediate the vulnerability, users should update to a patched version of SEACMS or apply any available security patches provided by the vendor. The potential danger posed by this vulnerability is that it enables attackers to inject malicious code into web pages, potentially compromising user data, session hijacking, or delivering malware to visitors of the compromised website.


Explore Beyond the CVE Basics with Recorded Future's Vulnerability Intelligence

Note: This is just a basic overview providing quick insights into CVE-2023-37124 information. Gain full access to comprehensive CVE data, risk scores, prioritization, and mitigation data through Recorded Future's Vulnerability Intelligence:
  • Prioritize with Risk-Based Scoring
  • Explore the Extensive Vulnerability Database
  • Receive Early Alerts on Emerging CVEs
  • Focus on Critical Exploitable Vulnerabilities
  • Streamline Remediation with Integration Options