CVE-2025-25517

CVSS 3.1 Score 9.8 of 10 (high)

Details

Published Feb 25, 2025

Updated: Feb 26, 2025

CWE ID 89

Summary

CVE-2025-25517 is a recently disclosed vulnerability affecting Seacms versions up to 13.3. Hackers can exploit this SQL Injection flaw in the admin_reslib.php file to gain unauthorized access to administrative functions. Successful exploitation could lead to data theft, unintended modifications, or even full system takeover. Users are strongly encouraged to update their Seacms installations to mitigate this risk.

Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.

SeaCMS

Affected Vendors

Seacms

Advisories, Assessments, and Mitigations

https://app.recordedfuture.com/live/sc/entity/3ICxne
https://www.cve.org/CVERecord?id=CVE-2025-25517
https://nvd.nist.gov/vuln/detail/CVE-2025-25517

Back to Vulnerability Database