CVE-2021-29313: XSS
First published: Tue Aug 17 2021(Updated: )
Cross Site Scripting (XSS) vulnerability exists in SeaCMS 12.6 via the (1) v_company and (2) v_tvs parameters in /admin_video.php,
Credit: cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Seacms Seacms | =12.6 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the severity of CVE-2021-29313?
The severity of CVE-2021-29313 is medium.
How does the Cross Site Scripting (XSS) vulnerability in SeaCMS 12.6 occur?
The Cross Site Scripting (XSS) vulnerability in SeaCMS 12.6 occurs via the v_company and v_tvs parameters in /admin_video.php.
How can I fix the Cross Site Scripting (XSS) vulnerability in SeaCMS 12.6?
To fix the Cross Site Scripting (XSS) vulnerability in SeaCMS 12.6, you should apply the latest patch or update provided by the SeaCMS developers.
Is there any additional information about CVE-2021-29313?
Yes, you can find additional information about CVE-2021-29313 at the following reference: https://github.com/ciweiin/seacms/issues/14
What is the CWE (Common Weakness Enumeration) for CVE-2021-29313?
The CWE for CVE-2021-29313 is CWE-79 (Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting')).
- collector/nvd-index
- agent/type
- collector/mitre-cve
- source/MITRE
- agent/last-modified-date
- agent/references
- agent/author
- agent/weakness
- agent/severity
- agent/softwarecombine
- agent/tags
- agent/first-publish-date
- agent/description
- agent/event
- vendor/seacms
- canonical/seacms seacms
- version/seacms seacms/12.6