Known Vulnerabilities for Semcms by Sem-cms
Listed below are 10 of the newest known vulnerabilities associated with "Semcms" by "Sem-cms".
These CVEs are retrieved based on exact matches on listed software, hardware, and vendor information (CPE data) as well as a keyword search to ensure the newest vulnerabilities with no officially listed software information are still displayed.
Data on known vulnerable versions is also displayed based on information from known CPEs
Known Vulnerabilities
| CVE | Shortened Description | Severity | Publish Date | Last Modified |
|---|---|---|---|---|
| CVE-2026-39170 json | SemCms 5.0 is vulnerable to Cross Site Request Forgery (CSRF) via crafted POST request to /admin/semcms_user.php. | Not Provided | 2026-06-09 | 2026-06-09 |
| CVE-2026-39169 json | SEMCMS 5.0 is vulnerable to unauthorized access in SEMCMS_copy.php. | Not Provided | 2026-06-09 | 2026-06-09 |
| CVE-2026-1552 json | Not Provided | 2026-01-29 | 2026-04-29 | |
| CVE-2025-51660 json | SemCms v5.0 was discovered to contain a SQL injection vulnerability via the lgid parameter at SEMCMS_Products.php. | Not Provided | 2025-07-14 | 2026-07-05 |
| CVE-2025-51659 json | SemCms v5.0 was discovered to contain a SQL injection vulnerability via the ID parameter at SEMCMS_Products.php. | Not Provided | 2025-07-14 | 2026-07-05 |
| CVE-2025-51658 json | SemCms v5.0 was discovered to contain a SQL injection vulnerability via the ID parameter at SEMCMS_InquiryView.php. | Not Provided | 2025-07-14 | 2026-07-05 |
| CVE-2025-51657 json | SemCms v5.0 was discovered to contain a SQL injection vulnerability via the lgid parameter at SEMCMS_Link.php. | Not Provided | 2025-07-14 | 2026-07-05 |
| CVE-2025-51656 json | SemCms v5.0 was discovered to contain a SQL injection vulnerability via the ID parameter at SEMCMS_Link.php. | Not Provided | 2025-07-14 | 2026-07-05 |
| CVE-2025-51655 json | SemCms v5.0 was discovered to contain a SQL injection vulnerability via the pid parameter at SEMCMS_Quanxian.php. | Not Provided | 2025-07-14 | 2026-07-05 |
| CVE-2025-51654 json | SemCms v5.0 was discovered to contain a SQL injection vulnerability via the pid parameter at SEMCMS_Infocategories.php. | Not Provided | 2025-07-14 | 2026-07-05 |