Sem-Cms Semcms vulnerabilities
58 known vulnerabilities affecting sem-cms/semcms.
Total CVEs
58
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
CRITICAL21HIGH10MEDIUM26LOW1
Vulnerabilities
Page 3 of 3
CVE-2025-51657P4MEDIUMCVSS 5.4≤ 5.02025-07-14
CVE-2025-51657 [MEDIUM] CWE-89 CVE-2025-51657: SemCms v5.0 was discovered to contain a SQL injection vulnerability via the lgid parameter at SEMCMS
SemCms v5.0 was discovered to contain a SQL injection vulnerability via the lgid parameter at SEMCMS_Link.php.
nvd
CVE-2025-51652P4MEDIUMCVSS 5.4≤ 5.02025-07-14
CVE-2025-51652 [MEDIUM] CWE-89 CVE-2025-51652: SemCms v5.0 was discovered to contain a SQL injection vulnerability via the pid parameter at SEMCMS_
SemCms v5.0 was discovered to contain a SQL injection vulnerability via the pid parameter at SEMCMS_Categories.php.
nvd
CVE-2024-52725P4MEDIUMCVSS 4.9v4.82024-11-20
CVE-2024-52725 [MEDIUM] CWE-89 CVE-2024-52725: SemCms v4.8 was discovered to contain a SQL injection vulnerability. This allows an attacker to exec
SemCms v4.8 was discovered to contain a SQL injection vulnerability. This allows an attacker to execute arbitrary code via the ldgid parameter in the SEMCMS_SeoAndTag.php component.
nvd
CVE-2024-13193P4MEDIUMCVSS 4.9≤ 4.8v4.0+8 more2025-01-08
CVE-2024-13193 [MEDIUM] CWE-74 CVE-2024-13193: A vulnerability has been found in SEMCMS up to 4.8 and classified as critical. Affected by this vuln
A vulnerability has been found in SEMCMS up to 4.8 and classified as critical. Affected by this vulnerability is an unknown functionality of the file SEMCMS_Images.php of the component Image Library Management Page. The manipulation leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be us
nvd
CVE-2024-36801P4MEDIUMCVSS 5.9v4.82024-06-04
CVE-2024-36801 [MEDIUM] CWE-89 CVE-2024-36801: A SQL injection vulnerability in SEMCMS v.4.8, allows a remote attacker to obtain sensitive informat
A SQL injection vulnerability in SEMCMS v.4.8, allows a remote attacker to obtain sensitive information via the lgid parameter in Download.php.
nvd
CVE-2018-18783P4MEDIUMCVSS 6.1v3.42018-10-29
CVE-2018-18783 [MEDIUM] CWE-79 CVE-2018-18783: XSS was discovered in SEMCMS V3.4 via the semcms_remail.php?type=ok umail parameter.
XSS was discovered in SEMCMS V3.4 via the semcms_remail.php?type=ok umail parameter.
nvd
CVE-2021-38728P4MEDIUMCVSS 6.1v1.12022-10-28
CVE-2021-38728 [MEDIUM] CWE-79 CVE-2021-38728: SEMCMS SHOP v 1.1 is vulnerable to Cross Site Scripting (XSS) via Ant_M_Coup.php.
SEMCMS SHOP v 1.1 is vulnerable to Cross Site Scripting (XSS) via Ant_M_Coup.php.
nvd
CVE-2018-18840P4MEDIUMCVSS 5.4v3.42018-10-30
CVE-2018-18840 [MEDIUM] CWE-79 CVE-2018-18840: XSS was discovered in SEMCMS PHP V3.4 via the SEMCMS_SeoAndTag.php?Class=edit&CF=SeoAndTag tag_index
XSS was discovered in SEMCMS PHP V3.4 via the SEMCMS_SeoAndTag.php?Class=edit&CF=SeoAndTag tag_indexmetatit parameter.
nvd
CVE-2024-53502P4LOWCVSS 3.8v4.82024-12-03
CVE-2024-53502 [LOW] CWE-89 CVE-2024-53502: Seecms v4.8 was discovered to contain a SQL injection vulnerability in the SEMCMS_SeoAndTag.php page
Seecms v4.8 was discovered to contain a SQL injection vulnerability in the SEMCMS_SeoAndTag.php page.
nvd
CVE-2018-18745P4MEDIUMCVSS 4.8v3.42018-10-29
CVE-2018-18745 [MEDIUM] CWE-79 CVE-2018-18745: An XSS issue was discovered in SEMCMS 3.4 via admin/SEMCMS_Menu.php?lgid=1 during editing.
An XSS issue was discovered in SEMCMS 3.4 via admin/SEMCMS_Menu.php?lgid=1 during editing.
nvd
CVE-2018-18738P4MEDIUMCVSS 4.8v3.42018-10-29
CVE-2018-18738 [MEDIUM] CWE-79 CVE-2018-18738: An XSS issue was discovered in SEMCMS 3.4 via the admin/SEMCMS_Categories.php?pid=1&lgid=1 category_
An XSS issue was discovered in SEMCMS 3.4 via the admin/SEMCMS_Categories.php?pid=1&lgid=1 category_key parameter.
nvd
CVE-2018-18741P4MEDIUMCVSS 4.8v3.42018-10-29
CVE-2018-18741 [MEDIUM] CWE-79 CVE-2018-18741: An XSS issue was discovered in SEMCMS 3.4 via admin/SEMCMS_Download.php?lgid=1 during editing.
An XSS issue was discovered in SEMCMS 3.4 via admin/SEMCMS_Download.php?lgid=1 during editing.
nvd
CVE-2018-18739P4MEDIUMCVSS 4.8v3.42018-10-29
CVE-2018-18739 [MEDIUM] CWE-79 CVE-2018-18739: An XSS issue was discovered in SEMCMS 3.4 via the admin/SEMCMS_Products.php?lgid=1 Keywords field.
An XSS issue was discovered in SEMCMS 3.4 via the admin/SEMCMS_Products.php?lgid=1 Keywords field.
nvd
CVE-2018-20017P4MEDIUMCVSS 4.8v3.52018-12-10
CVE-2018-20017 [MEDIUM] CWE-79 CVE-2018-20017: SEMCMS 3.5 has XSS via the first text box to the SEMCMS_Main.php URI.
SEMCMS 3.5 has XSS via the first text box to the SEMCMS_Main.php URI.
nvd
CVE-2018-18841P4MEDIUMCVSS 4.8v3.42018-10-30
CVE-2018-18841 [MEDIUM] CWE-79 CVE-2018-18841: XSS was discovered in SEMCMS PHP V3.4 via the SEMCMS_SeoAndTag.php?Class=edit&CF=SeoAndTag tag_index
XSS was discovered in SEMCMS PHP V3.4 via the SEMCMS_SeoAndTag.php?Class=edit&CF=SeoAndTag tag_indexkey parameter.
nvd
CVE-2018-18743P4MEDIUMCVSS 4.8v3.42018-10-29
CVE-2018-18743 [MEDIUM] CWE-79 CVE-2018-18743: An XSS issue was discovered in SEMCMS 3.4 via the second text field to the admin/SEMCMS_Categories.p
An XSS issue was discovered in SEMCMS 3.4 via the second text field to the admin/SEMCMS_Categories.php?pid=1&lgid=1 URI.
nvd
CVE-2018-18744P4MEDIUMCVSS 4.8v3.42018-10-29
CVE-2018-18744 [MEDIUM] CWE-79 CVE-2018-18744: An XSS issue was discovered in SEMCMS 3.4 via the fifth text box to the admin/SEMCMS_Main.php URI.
An XSS issue was discovered in SEMCMS 3.4 via the fifth text box to the admin/SEMCMS_Main.php URI.
nvd
CVE-2018-18740P4MEDIUMCVSS 4.8v3.42018-10-29
CVE-2018-18740 [MEDIUM] CWE-79 CVE-2018-18740: An XSS issue was discovered in SEMCMS 3.4 via the first input field to the admin/SEMCMS_Link.php?lgi
An XSS issue was discovered in SEMCMS 3.4 via the first input field to the admin/SEMCMS_Link.php?lgid=1 URI.
nvd
← Previous3 / 3