CVE-2023-2926

Name of the Vulnerable Software and Affected Versions SeaCMS version 11.6

Description A problematic issue affects the Picture Upload Handler component, specifically the file member.php, where the manipulation of the oldpic argument leads to denial of service. The attack can be initiated remotely.

Recommendations For SeaCMS version 11.6, consider restricting access to the Picture Upload Handler component until a fix is available. As a temporary workaround, avoid using the oldpic argument in the affected file member.php to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.