Lucene search
K

168 matches found

NVD
NVD
added 2022/02/01 7:15 p.m.16 views

CVE-2022-24222

eliteCMS v1.0 was discovered to contain a SQL injection vulnerability via /admin/edituser.php...

9.8CVSS0.01096EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2022/02/01 7:15 p.m.6 views

CVE-2022-24219

eliteCMS v1.0 was discovered to contain a SQL injection vulnerability via /admin/editpage.php...

9.8CVSS7.4AI score0.01096EPSS
Exploits1References2
OSV
OSV
added 2022/02/01 7:15 p.m.5 views

CVE-2022-24220

eliteCMS v1.0 was discovered to contain a SQL injection vulnerability via /admin/editpost.php...

9.8CVSS7.3AI score0.01096EPSS
Exploits1References1
Prion
Prion
added 2022/02/01 7:15 p.m.11 views

Sql injection

eliteCMS v1.0 was discovered to contain a SQL injection vulnerability via /admin/editpage.php...

7.5CVSS9.8AI score0.01096EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2022/02/01 7:15 p.m.16 views

Sql injection

eliteCMS v1.0 was discovered to contain a SQL injection vulnerability via /admin/editpost.php...

7.5CVSS9.8AI score0.01096EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2022/02/01 7:15 p.m.17 views

Code injection

eliteCMS v1.0 is vulnerable to Insecure Permissions via manageuploads.php...

7.5CVSS9.3AI score0.01186EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2022/02/01 7:15 p.m.22 views

Sql injection

eliteCMS v1.0 was discovered to contain a SQL injection vulnerability via /admin/functions/functions.php...

7.5CVSS9.8AI score0.01096EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2022/02/01 7:15 p.m.15 views

Sql injection

eliteCMS v1.0 was discovered to contain a SQL injection vulnerability via /admin/edituser.php...

7.5CVSS9.8AI score0.01096EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2022/02/01 7:15 p.m.15 views

Code injection

An issue in /admin/deleteimage.php of eliteCMS v1.0 allows attackers to delete arbitrary files...

6.4CVSS9.1AI score0.1695EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/02/01 6:36 p.m.18 views

CVE-2022-24220

eliteCMS v1.0 was discovered to contain a SQL injection vulnerability via /admin/editpost.php...

10AI score0.01096EPSS
Exploits1References1
CVE
CVE
added 2022/02/01 6:36 p.m.44 views

CVE-2022-24220

EliteCMS v1.0 contains a SQL injection vulnerability in /admin/edit_post.php due to lack of validation of externally entered SQL statements. This affects the web CMS component and can allow an attacker to manipulate queries, potentially impacting data confidentiality, integrity, and availability ...

9.8CVSS9.7AI score0.01096EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/02/01 6:36 p.m.23 views

CVE-2022-24222

eliteCMS v1.0 was discovered to contain a SQL injection vulnerability via /admin/edituser.php...

10AI score0.01096EPSS
Exploits1References1
CVE
CVE
added 2022/02/01 6:36 p.m.48 views

CVE-2022-24222

The CVE-2022-24222 entry concerns eliteCMS v1.0 with a SQL injection vulnerability in the admin path (/admin/edit_user.php). The issue allows remote attackers to submit a crafted SQL request to manipulate the database, obtain sensitive information, or execute arbitrary code, as described across m...

9.8CVSS9.8AI score0.01096EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/02/01 6:36 p.m.22 views

CVE-2022-24221

eliteCMS v1.0 was discovered to contain a SQL injection vulnerability via /admin/functions/functions.php...

10AI score0.01096EPSS
Exploits1References1
CVE
CVE
added 2022/02/01 6:36 p.m.51 views

CVE-2022-24221

CVE-2022-24221 affects eliteCMS v1.0, with a vulnerability in the file path /admin/functions/functions.php that enables a SQL injection. The connected documents consistently describe remote-exploitation potential through crafted SQL requests to manipulate the database, access sensitive data, or p...

9.8CVSS9.8AI score0.01096EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/02/01 6:36 p.m.21 views

CVE-2022-24219

eliteCMS v1.0 was discovered to contain a SQL injection vulnerability via /admin/editpage.php...

10AI score0.01096EPSS
Exploits1References1
CVE
CVE
added 2022/02/01 6:36 p.m.51 views

CVE-2022-24219

CVE-2022-24219 affects eliteCMS v1.0, with a SQL injection in the /admin/edit_page.php path. The root cause is unsanitized or improperly validated SQL statements in the edit_page.php component, enabling an attacker to manipulate queries and potentially access or modify data. Public documents cons...

9.8CVSS9.7AI score0.01096EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/02/01 6:36 p.m.17 views

CVE-2022-24218

An issue in /admin/deleteimage.php of eliteCMS v1.0 allows attackers to delete arbitrary files...

9.4AI score0.1695EPSS
Exploits1References1
CVE
CVE
added 2022/02/01 6:36 p.m.46 views

CVE-2022-24218

CVE-2022-24218 affects eliteCMS v1.0. The issue resides in /admin/delete_image.php and allows attackers to delete arbitrary files. From the provided metrics, CVSSv2 base score is 6.4 (Network, Low attack complexity, None auth, I/P) with Partial integrity/Partial availability impact, and CVSSv3.1 ...

9.1CVSS9.1AI score0.1695EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2022/02/01 6:36 p.m.19 views

CVE-2021-46093

eliteCMS v1.0 is vulnerable to Insecure Permissions via manageuploads.php...

9.6AI score0.01186EPSS
Exploits1References1
Rows per page
Query Builder