CVE-2023-2926
MEDIUMSeaCMS 11.6 - Denial of Service via Picture Upload Handler
Title source: llmDescription
A vulnerability was found in SeaCMS 11.6 and classified as problematic. This issue affects some unknown processing of the file member.php of the component Picture Upload Handler. The manipulation of the argument oldpic leads to denial of service. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. The identifier VDB-230081 was assigned to this vulnerability.
References (3)
Core 3
Core References
Third Party Advisory vdb-entry
technical-description
https://vuldb.com/?id.230081
Third Party Advisory signature
permissions-required
https://vuldb.com/?ctiid.230081
Exploit, Third Party Advisory exploit
https://github.com/xryj920/CVE/blob/main/DEL.md
Scores
CVSS v3
5.4
EPSS
0.0087
EPSS Percentile
54.0%
Attack Vector
NETWORK
CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:N/I:L/A:L
Details
CWE
CWE-404
Status
published
Products (1)
seacms/seacms
11.6
Published
May 27, 2023
Tracked Since
Feb 18, 2026