Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
espcms-p8 vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2020-18913
EARCLINK ESPCMS-P8 exists to contain a SQL injection vulnerability in the espcms_web/Search.php component via the attr_array parameter. This vulnerability allows malicious users to access sensitive database information.
Ecisp Espcms-p8 -
7.5
CVSSv3
CVE-2019-5488
EARCLINK ESPCMS-P8 has SQL injection in the install_pack/index.php?ac=Member&at=verifyAccount verify_key parameter. install_pack/espcms_public/espcms_db.php may allow retrieving sensitive information from the ESPCMS database.
Earclink Espcms-p8 -
7.2
CVSSv3
CVE-2022-33085
ESPCMS P8 exists to contain an authenticated remote code execution (RCE) vulnerability via the fetch_filename function at \espcms_public\espcms_templates\ESPCMS_Templates.
Ecisp Espcms-p8 -
6.1
CVSSv3
CVE-2020-20125
EARCLINK ESPCMS-P8 contains a cross-site scripting (XSS) vulnerability in espcms_web\espcms_load.php.
Earclink Espcms-p8 -
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-30924
CVE-2024-3400
overflow
CVE-2024-23528
CVE-2024-21338
CVE-2024-3818
CVE-2024-23535
NULL pointer dereference
elevation of privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started