Sem Cms

sem-cms

59 CVEs • 1 product

Products (1)

Click to collapse

Toggle

CVEs (59)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2021-38737 1Sem Cms 1Semcms May 7, 2025 Oct 28, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 SEMCMS v 1.1 is vulnerable to SQL Injection via Ant_Pro.php.
CVE-2021-38736 1Sem Cms 1Semcms May 7, 2025 Oct 28, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 SEMCMS Shop V 1.1 is vulnerable to SQL Injection via Ant_Global.php.
CVE-2021-38734 1Sem Cms 1Semcms May 7, 2025 Oct 28, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 SEMCMS SHOP v 1.1 is vulnerable to SQL Injection via Ant_Menu.php.
CVE-2022-2726 1Sem Cms 1Semcms Nov 21, 2024 Aug 9, 2022 N/A· v4 9.8 CRITICAL· v3 N/A· v2 A vulnerability classified as critical has been found in SEMCMS. This affects an unknown part of the file Ant_Check.php. The manipulation of the argument DID leads to sql injection. It is possible to initiate the attack...Show more A vulnerability classified as critical has been found in SEMCMS. This affects an unknown part of the file Ant_Check.php. The manipulation of the argument DID leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed to the public and may be used. The associated identifier of this vulnerability is VDB-205839.Show less
CVE-2020-18081 1Sem Cms 1Semcms Nov 21, 2024 Dec 17, 2021 N/A· v4 7.5 HIGH· v3 5.0 MEDIUM· v2 The checkuser function of SEMCMS 3.8 was discovered to contain a vulnerability which allows attackers to obtain the password in plaintext through a SQL query.
CVE-2020-18078 1Sem Cms 1Semcms Nov 21, 2024 Dec 17, 2021 N/A· v4 9.8 CRITICAL· v3 5.0 MEDIUM· v2 A vulnerability in /include/web_check.php of SEMCMS v3.8 allows attackers to reset the Administrator account's password.
CVE-2019-11518 1Sem Cms 1Semcms Nov 21, 2024 Apr 25, 2019 N/A· v4 7.2 HIGH· v3 6.5 MEDIUM· v2 An issue was discovered in SEMCMS 3.8. SEMCMS_Inquiry.php allows AID[] SQL Injection because the class.phpmailer.php inject_check_sql protection mechanism is incomplete.
CVE-2018-20017 1Sem Cms 1Semcms Nov 21, 2024 Dec 10, 2018 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 SEMCMS 3.5 has XSS via the first text box to the SEMCMS_Main.php URI.
CVE-2018-18841 1Sem Cms 1Semcms Nov 21, 2024 Oct 30, 2018 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 XSS was discovered in SEMCMS PHP V3.4 via the SEMCMS_SeoAndTag.php?Class=edit&CF=SeoAndTag tag_indexkey parameter.
CVE-2018-18840 1Sem Cms 1Semcms Nov 21, 2024 Oct 30, 2018 N/A· v4 5.4 MEDIUM· v3 3.5 LOW· v2 XSS was discovered in SEMCMS PHP V3.4 via the SEMCMS_SeoAndTag.php?Class=edit&CF=SeoAndTag tag_indexmetatit parameter.
CVE-2018-18783 1Sem Cms 1Semcms Nov 21, 2024 Oct 29, 2018 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 XSS was discovered in SEMCMS V3.4 via the semcms_remail.php?type=ok umail parameter.
CVE-2018-18745 1Sem Cms 1Semcms Nov 21, 2024 Oct 29, 2018 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 An XSS issue was discovered in SEMCMS 3.4 via admin/SEMCMS_Menu.php?lgid=1 during editing.
CVE-2018-18744 1Sem Cms 1Semcms Nov 21, 2024 Oct 29, 2018 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 An XSS issue was discovered in SEMCMS 3.4 via the fifth text box to the admin/SEMCMS_Main.php URI.
CVE-2018-18743 1Sem Cms 1Semcms Nov 21, 2024 Oct 29, 2018 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 An XSS issue was discovered in SEMCMS 3.4 via the second text field to the admin/SEMCMS_Categories.php?pid=1&lgid=1 URI.
CVE-2018-18742 1Sem Cms 1Semcms Nov 21, 2024 Oct 29, 2018 N/A· v4 8.8 HIGH· v3 6.8 MEDIUM· v2 A CSRF issue was discovered in SEMCMS 3.4 via the admin/SEMCMS_User.php?Class=add&CF=user URI.
CVE-2018-18741 1Sem Cms 1Semcms Nov 21, 2024 Oct 29, 2018 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 An XSS issue was discovered in SEMCMS 3.4 via admin/SEMCMS_Download.php?lgid=1 during editing.
CVE-2018-18740 1Sem Cms 1Semcms Nov 21, 2024 Oct 29, 2018 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 An XSS issue was discovered in SEMCMS 3.4 via the first input field to the admin/SEMCMS_Link.php?lgid=1 URI.
CVE-2018-18739 1Sem Cms 1Semcms Nov 21, 2024 Oct 29, 2018 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 An XSS issue was discovered in SEMCMS 3.4 via the admin/SEMCMS_Products.php?lgid=1 Keywords field.
CVE-2018-18738 1Sem Cms 1Semcms Nov 21, 2024 Oct 29, 2018 N/A· v4 4.8 MEDIUM· v3 3.5 LOW· v2 An XSS issue was discovered in SEMCMS 3.4 via the admin/SEMCMS_Categories.php?pid=1&lgid=1 category_key parameter.