2026-01-25 13:04:16
VulnCheck
PUBLISHED
SeaCMS 11.1 contains a stored cross-site scripting vulnerability in the checkuser parameter of the admin settings page. Attackers can inject malicious JavaScript payloads that will execute in users browsers when the page is loaded.