The checkuser function of SEMCMS 3.8 was discovered to contain a vulnerability which allows attackers to obtain the password in plaintext through a SQL query.Referenceshttps://github.com/cve-vul/vul/blob/master/SEMCMS/backstage_access_control.md
