Vulnerability Database

319,703

Total vulnerabilities in the database

CVE-2025-15003

A vulnerability was found in SeaCMS up to 13.3. The impacted element is an unknown function of the file admin_video.php. Performing manipulation of the argument e_id results in sql injection. The attack is possible to be carried out remotely. The exploit has been made public and could be used.

Published: Dec 22, 2025
Updated: Dec 31, 2025
CVE: CVE-2025-15003
Severity: Low
Exploit:

CVSS v3:

Severity: Low
Score: 4.7
AV:N/AC:L/PR:H/UI:N/S:U/C:L/I:L/A:L

CVSS v2:

Severity: Medium
Score: 5.8
AV:N/AC:L/Au:M/C:P/I:P/A:P

CWEs:

CWE-74
CWE-89

OWASP TOP 10:

A1 - Injection

Affected Software
References

Software	From	Fixed in
seacms / seacms	13.0	13.3.x

https://note-hxlab.wetolink.com/share/aTI1wPFLm7FG
https://vuldb.com/?ctiid.337708
https://vuldb.com/?id.337708
https://vuldb.com/?submit.716084

Deep Security Visibility Without the Complexity

SynScan provides clear, real-time security insights so you can monitor your attack surface, spot risks early, and act fast—without extra complexity.

No setup fees
5-min deployment
Cancel anytime

Book a Demo