Lucene search
K

27 matches found

Cvelist
Cvelist
added 2023/04/26 12:0 a.m.30 views

CVE-2023-30266

CLTPHP =6.0 is vulnerable to Unrestricted Upload of File with Dangerous Type...

8.8AI score0.00827EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/04/26 12:0 a.m.10 views

CVE-2023-30267

CLTPHP =6.0 is vulnerable to Cross Site Scripting XSS via application/home/controller/Changyan.php...

6.1AI score0.00395EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/04/26 12:0 a.m.8 views

CVE-2023-30265

CLTPHP =6.0 is vulnerable to Directory Traversal...

6.9AI score0.01022EPSS
Exploits0References1
Cvelist
Cvelist
added 2023/04/26 12:0 a.m.28 views

CVE-2023-30265

CLTPHP =6.0 is vulnerable to Directory Traversal...

6.7AI score0.01022EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2023/04/26 12:0 a.m.8 views

CVE-2023-30269

CLTPHP =6.0 is vulnerable to Improper Input Validation via application/admin/controller/Template.php...

6.9AI score0.00734EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2022/03/29 5:50 a.m.5 views

CVE-2022-1085 CLTPHP POST Parameter cross site scripting

A vulnerability was found in CLTPHP up to 6.0. It has been declared as problematic. Affected by this vulnerability is the POST Parameter Handler. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used...

3.5CVSS6.2AI score0.0057EPSS
Exploits0References1
CNVD
CNVD
added 2018/03/18 12:0 a.m.3 views

xml entity injection vulnerability in CLTPHP version 5.5.3

CLTPHP is a content management system developed in ThinkPHP with the Layui framework in the backend. CLTPHP version 5.5.3 has an XML entity injection vulnerability in the program implementation, which can be exploited by attackers to read arbitrary files, execute system commands, probe intranet...

7.5AI score
Exploits0
Rows per page
Query Builder