SeaCMS admin_members.php sql injection_CVE-2025-10662

5.1 / 10

MEDIUM

CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P

Description

A vulnerability has been found in SeaCMS up to 13.3. The impacted element is an unknown function of the file /admin_members.php?ac=editsave. Such manipulation of the argument ID leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. This affects another injection point than CVE-2025-25513.

Basic Information

ID CVE-2025-10662

Source VulDB

Published Sep 18, 2025 at 10:32

Affected Product

Vendor n/a

Product SeaCMS

Version 13.0

Affected Versions n/a SeaCMS 13.0
n/a SeaCMS 13.1
n/a SeaCMS 13.2
n/a SeaCMS 13.3

CWE Classification

CWE-89 CWE-74

References

{
    "lastseen": "",
    "description": "A vulnerability has been found in SeaCMS up to 13.3. The impacted element is an unknown function of the file /admin_members.php?ac=editsave. Such manipulation of the argument ID leads to sql injection. The attack can be launched remotely. The exploit has been disclosed to the public and may be used. This affects another injection point than CVE-2025-25513.",
    "published": "2025-09-18T10:32:05.368Z",
    "modified": "2025-09-18T10:32:05.368Z",
    "type": "cve",
    "title": "SeaCMS admin_members.php sql injection",
    "source": "VulDB",
    "references": "https://vuldb.com/?id.324783\nhttps://vuldb.com/?ctiid.324783\nhttps://vuldb.com/?submit.649866\nhttps://github.com/coolcj-stack/seacms-v13.3-sqli/blob/main/README.md",
    "id": "CVE-2025-10662",
    "bulletinFamily": "",
    "cwe": [
        "CWE-89",
        "CWE-74"
    ],
    "cvelist": null,
    "sourceData": "n/a SeaCMS 13.0\nn/a SeaCMS 13.1\nn/a SeaCMS 13.2\nn/a SeaCMS 13.3",
    "sourceHref": "",
    "cvss": {
        "score": 5.1,
        "severity": "MEDIUM",
        "vector": "CVSS:4.0/AV:N/AC:L/AT:N/PR:H/UI:N/VC:L/VI:L/VA:L/SC:N/SI:N/SA:N/E:P",
        "version": "4.0"
    },
    "cvss2": [],
    "cvss3": {
        "version": "",
        "vectorString": "",
        "baseScore": 0,
        "baseSeverity": "",
        "attackVector": "",
        "attackComplexity": "",
        "privilegesRequired": "",
        "userInteraction": "",
        "scope": "",
        "confidentialityImpact": "",
        "integrityImpact": "",
        "availabilityImpact": "",
        "cvssV3": {
            "version": "",
            "vectorString": "",
            "baseScore": 0,
            "baseSeverity": "",
            "attackVector": "",
            "attackComplexity": "",
            "privilegesRequired": "",
            "userInteraction": "",
            "scope": "",
            "confidentialityImpact": "",
            "integrityImpact": "",
            "availabilityImpact": ""
        }
    },
    "href": "",
    "category_name": "CVE",
    "post_link": "",
    "product": "SeaCMS",
    "version": "13.0",
    "vendor": "n/a",
    "ai_description": "",
    "ai_severity": "",
    "ai_vendor": "",
    "ai_product": "",
    "ai_version": "",
    "ai_score": 0
}