CVE-2023-46010

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Oct 25, 2023
Updated: Nov 1, 2023

Summary

CVE-2023-46010 is a newly disclosed vulnerability affecting SeaCMS version 12.9. This issue permits an attacker to execute arbitrary commands through the admin_safe.php component, posing a significant risk for unauthorized system access and potential data breaches. An attacker can exploit this vulnerability by sending malicious input to the affected component, leading to the execution ofunintended and potentially harmful code. Organizations using SeaCMS v.12.9 are urged to apply the available patch or update as soon as possible to mitigate this threat.

Ligh bulbPrevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

Share