8 matches found
EUVD-2022-29126
Malicious code in bioql PyPI...
EUVD-2022-29127
Malicious code in bioql PyPI...
CVE-2022-24221
eliteCMS v1.0 was discovered to contain a SQL injection vulnerability via /admin/functions/functions.php...
CVE-2022-24219
eliteCMS v1.0 was discovered to contain a SQL injection vulnerability via /admin/editpage.php...
CVE-2022-30810
elitecms v1.01 is vulnerable to SQL Injection via admin/editpost.php...
CVE-2023-42331
A file upload vulnerability in EliteCMS v1.01 allows a remote attacker to execute arbitrary code via the manageuploads.php component...
PT-2023-28318 · Elitecms · Elitecms
Name of the Vulnerable Software and Affected Versions: EliteCMS version 1.01 Description: A file upload vulnerability allows a remote attacker to execute arbitrary code via the manage uploads.php component. Recommendations: For EliteCMS version 1.01, consider disabling the file upload functionali...
Elitecms SQL Injection Vulnerability (CNVD-2022-57760)
Elitecms is a Web content management from elitecms India. elitecms version 1.01 has a SQL injection vulnerability that originates from the /admin/addsidebar.php page's lack of validation of external input SQL statements, which can be exploited by attackers to execute illegal SQL commands to steal...