Sem Cms: community verdicts
12 notable / known-exploited Sem Cms CVEs the community has triaged.
- CVE-2024-32409HIGH 7.1Real · low riskEPSS 1%
An issue in SEMCMS v.4.8 allows a remote attacker to execute arbitrary code via a crafted script.
- CVE-2023-37647CRIT 9.8Real · low riskEPSS 1%
SEMCMS v1.5 was discovered to contain a SQL injection vulnerability via the id parameter at /Ant_Suxin.php.
- CVE-2024-52725MED 4.9EPSS 1%
SemCms v4.8 was discovered to contain a SQL injection vulnerability. This allows an attacker to execute arbitrary code via the ldgid parameter in the SEMCMS_SeoAndTag.php component.
- CVE-2025-51658MED 5.4EPSS 0%
SemCms v5.0 was discovered to contain a SQL injection vulnerability via the ID parameter at SEMCMS_InquiryView.php.
- CVE-2025-51660MED 5.4EPSS 0%
SemCms v5.0 was discovered to contain a SQL injection vulnerability via the lgid parameter at SEMCMS_Products.php.
- CVE-2025-51656MED 5.4EPSS 0%
SemCms v5.0 was discovered to contain a SQL injection vulnerability via the ID parameter at SEMCMS_Link.php.
- CVE-2025-51659MED 5.4EPSS 0%
SemCms v5.0 was discovered to contain a SQL injection vulnerability via the ID parameter at SEMCMS_Products.php.
- CVE-2025-51657MED 5.4EPSS 0%
SemCms v5.0 was discovered to contain a SQL injection vulnerability via the lgid parameter at SEMCMS_Link.php.
- CVE-2025-51654MED 5.4EPSS 0%
SemCms v5.0 was discovered to contain a SQL injection vulnerability via the pid parameter at SEMCMS_Infocategories.php.
- CVE-2025-51653MED 5.4EPSS 0%
SemCms v5.0 was discovered to contain a SQL injection vulnerability via the pid parameter at SEMCMS_ct.php.
- CVE-2025-51652MED 5.4EPSS 0%
SemCms v5.0 was discovered to contain a SQL injection vulnerability via the pid parameter at SEMCMS_Categories.php.
- CVE-2025-51655MED 5.4EPSS 0%
SemCms v5.0 was discovered to contain a SQL injection vulnerability via the pid parameter at SEMCMS_Quanxian.php.