CVE-2018-17062

Name of the Vulnerable Software and Affected Versions SeaCMS version 6.64

Description A security issue was found in the software. It is related to XSS that exists in the "admin video.php" file via certain parameters, including action, area, type, yuyan, jqtype, v isunion, v recycled, v ismoney, or v ispsd.

Recommendations For SeaCMS version 6.64, update the software to a version that includes a fix for this issue, or as a temporary workaround, consider restricting access to the "admin video.php" file and avoid using the vulnerable parameters until a patch is available.