Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
elite cms vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2023-42331
A file upload vulnerability in EliteCMS v1.01 allows a remote malicious user to execute arbitrary code via the manage_uploads.php component.
Elitecms Elite Cms 1.01
6.5
CVSSv2
CVE-2018-12250
An issue exists in Elite CMS Pro 2.01. In /admin/add_sidebar.php, the ?page= parameter is vulnerable to SQL injection.
Elitecms Elite Cms 2.01
6.4
CVSSv2
CVE-2022-24218
An issue in /admin/delete_image.php of eliteCMS v1.0 allows malicious users to delete arbitrary files.
Elitecms Elite Cms 1.0
7.5
CVSSv2
CVE-2022-24219
eliteCMS v1.0 exists to contain a SQL injection vulnerability via /admin/edit_page.php.
Elitecms Elite Cms 1.0
7.5
CVSSv2
CVE-2022-24220
eliteCMS v1.0 exists to contain a SQL injection vulnerability via /admin/edit_post.php.
Elitecms Elite Cms 1.0
7.5
CVSSv2
CVE-2022-24221
eliteCMS v1.0 exists to contain a SQL injection vulnerability via /admin/functions/functions.php.
Elitecms Elite Cms 1.0
7.5
CVSSv2
CVE-2022-24222
eliteCMS v1.0 exists to contain a SQL injection vulnerability via /admin/edit_user.php.
Elitecms Elite Cms 1.0
7.5
CVSSv2
CVE-2021-46093
eliteCMS v1.0 is vulnerable to Insecure Permissions via manage_uploads.php.
Elitecms Elite Cms 1.0
NA
CVE-2022-40361
Cross Site Scripting Vulnerability in Elite CRM v1.2.11 allows malicious user to execute arbitrary code via the language parameter to the /ngs/login endpoint.
Elitecms Elite Cms 1.2.11
7.5
CVSSv2
CVE-2022-30808
elitecms 1.0.1 is vulnerable to Arbitrary code execution via admin/manage_uploads.php.
Elitecms Elite Cms 1.01
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
NEXT »