Lucene search
K

168 matches found

Cvelist
Cvelist
added 2022/05/31 3:54 p.m.26 views

CVE-2022-30815

elitecms 1.01 is vulnerable to SQL Injection via admin/editsidebar.php?page=2&sidebar=...

10AI score0.01081EPSS
Exploits1References1
CVE
CVE
added 2022/05/31 3:52 p.m.65 views

CVE-2022-30816

CVE-2022-30816 affects elitecms 1.01 and is a SQL Injection vulnerability exploitable via the /admin/edit_sidebar.php page. The root cause is lack of validation of the external input SQL statements in the page parameter, enabling an attacker to execute arbitrary SQL commands to steal sensitive da...

9.8CVSS9.8AI score0.01081EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/05/31 3:52 p.m.19 views

CVE-2022-30816

elitecms 1.01 is vulnerable to SQL Injection via /admin/editsidebar.php...

10AI score0.01081EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2022/05/31 12:0 a.m.5 views

PT-2022-20323 · Elitecms · Elitecms

Name of the Vulnerable Software and Affected Versions: elitecms version 1.01 Description: The issue allows deletion of any file via the "/admin/delete image.php?file=" API endpoint. The estimated number of potentially affected devices worldwide is not specified. There is no information about...

6.5CVSS6.3AI score0.01047EPSS
Exploits1References3
CNVD
CNVD
added 2022/02/10 12:0 a.m.14 views

eliteCMS /admin/edit_user.php SQL Injection Vulnerability

eliteCMS is a popular content management system. A SQL injection vulnerability exists in eliteCMS /admin/edituser.php, which can be exploited by remote attackers to submit a special SQL request to manipulate the database, obtain sensitive information or execute arbitrary code...

9.8CVSS9.8AI score0.01096EPSS
Exploits1References1
CNVD
CNVD
added 2022/02/10 12:0 a.m.36 views

eliteCMS /admin/functions/functions.php SQL Injection Vulnerability

eliteCMS is a popular content management system. A SQL injection vulnerability exists in eliteCMS /admin/functions/functions.php, which can be exploited by remote attackers to submit a special SQL request to manipulate the database, obtain sensitive information or execute arbitrary code...

9.8CVSS9.8AI score0.01096EPSS
Exploits1References1
NVD
NVD
added 2022/02/01 7:15 p.m.18 views

CVE-2022-24218

An issue in /admin/deleteimage.php of eliteCMS v1.0 allows attackers to delete arbitrary files...

9.1CVSS0.1695EPSS
Exploits1References1
OSV
OSV
added 2022/02/01 7:15 p.m.5 views

CVE-2022-24220

eliteCMS v1.0 was discovered to contain a SQL injection vulnerability via /admin/editpost.php...

9.8CVSS7.3AI score0.01096EPSS
Exploits1References1
OSV
OSV
added 2022/02/01 7:15 p.m.2 views

CVE-2022-24219

eliteCMS v1.0 was discovered to contain a SQL injection vulnerability via /admin/editpage.php...

9.8CVSS5.8AI score0.01096EPSS
Exploits1References1
OSV
OSV
added 2022/02/01 7:15 p.m.5 views

CVE-2022-24218

An issue in /admin/deleteimage.php of eliteCMS v1.0 allows attackers to delete arbitrary files...

9.1CVSS7.4AI score0.1695EPSS
Exploits1References1
OSV
OSV
added 2022/02/01 7:15 p.m.5 views

CVE-2022-24222

eliteCMS v1.0 was discovered to contain a SQL injection vulnerability via /admin/edituser.php...

9.8CVSS7.3AI score0.01096EPSS
Exploits1References1
NVD
NVD
added 2022/02/01 7:15 p.m.23 views

CVE-2021-46093

eliteCMS v1.0 is vulnerable to Insecure Permissions via manageuploads.php...

9.8CVSS0.01186EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2022/02/01 7:15 p.m.6 views

CVE-2022-24220

eliteCMS v1.0 was discovered to contain a SQL injection vulnerability via /admin/editpost.php...

9.8CVSS7.4AI score0.01096EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2022/02/01 7:15 p.m.6 views

CVE-2021-46093

eliteCMS v1.0 is vulnerable to Insecure Permissions via manageuploads.php...

9.8CVSS7.8AI score0.01186EPSS
Exploits1References2
NVD
NVD
added 2022/02/01 7:15 p.m.21 views

CVE-2022-24220

eliteCMS v1.0 was discovered to contain a SQL injection vulnerability via /admin/editpost.php...

9.8CVSS0.01096EPSS
Exploits1References1
OSV
OSV
added 2022/02/01 7:15 p.m.5 views

CVE-2022-24221

eliteCMS v1.0 was discovered to contain a SQL injection vulnerability via /admin/functions/functions.php...

9.8CVSS5.8AI score0.01096EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2022/02/01 7:15 p.m.5 views

CVE-2022-24218

An issue in /admin/deleteimage.php of eliteCMS v1.0 allows attackers to delete arbitrary files...

9.1CVSS7.4AI score0.1695EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2022/02/01 7:15 p.m.6 views

CVE-2022-24221

eliteCMS v1.0 was discovered to contain a SQL injection vulnerability via /admin/functions/functions.php...

9.8CVSS7.4AI score0.01096EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2022/02/01 7:15 p.m.6 views

CVE-2022-24222

eliteCMS v1.0 was discovered to contain a SQL injection vulnerability via /admin/edituser.php...

9.8CVSS7.4AI score0.01096EPSS
Exploits1References2
NVD
NVD
added 2022/02/01 7:15 p.m.21 views

CVE-2022-24221

eliteCMS v1.0 was discovered to contain a SQL injection vulnerability via /admin/functions/functions.php...

9.8CVSS0.01096EPSS
Exploits1References1
Rows per page
Query Builder