CVE-2021-39426

CVSS V2 None CVSS V3 None
Description
An issue was discovered in /Upload/admin/admin_notify.php in Seacms 11.4 allows attackers to execute arbitrary php code via the notify1 parameter when the action parameter equals set.
Overview
  • CVE ID
  • CVE-2021-39426
  • Assigner
  • cve@mitre.org
  • Vulnerability Status
  • Analyzed
  • Published Version
  • 2022-12-15T19:15:15
  • Last Modified Date
  • 2022-12-21T19:55:07
CPE Configuration (Product)
CPE Vulnerable Operator Version Start Version End
cpe:2.3:a:seacms:seacms:11.4:*:*:*:*:*:*:* 1 OR
References
Reference URL Reference Tags
https://github.com/seacms-com/seacms/issues/21
History
Created Old Value New Value Data Type Notes
2022-12-15 19:16:02 Added to TrackCVE
2022-12-15 20:15:15 2022-12-15T19:15:15.967 2022-12-15T19:15:15 CVE Published Date updated
2022-12-15 20:15:15 2022-12-15T19:56:28 CVE Modified Date updated
2022-12-15 20:15:15 Received Awaiting Analysis Vulnerability Status updated
2022-12-18 09:30:12 Awaiting Analysis Undergoing Analysis Vulnerability Status updated
2022-12-21 20:16:11 2022-12-21T19:55:07 CVE Modified Date updated
2022-12-21 20:16:11 Undergoing Analysis Analyzed Vulnerability Status updated
2022-12-21 20:16:11 Weakness Enumeration new
2022-12-21 20:16:12 CPE Information updated