Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Cltphp Subscribe
Filtered by product Cltphp
Total 7 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-30266 1 Cltphp 1 Cltphp 2024-02-04 N/A 8.8 HIGH
CLTPHP <=6.0 is vulnerable to Unrestricted Upload of File with Dangerous Type.
CVE-2023-30264 1 Cltphp 1 Cltphp 2024-02-04 N/A 9.8 CRITICAL
CLTPHP <=6.0 is vulnerable to Unrestricted Upload of File with Dangerous Type via application/admin/controller/Template.php:update.
CVE-2023-30268 2 Cltphp, Microsoft 2 Cltphp, Windows 2024-02-04 N/A 9.8 CRITICAL
CLTPHP <=6.0 is vulnerable to Improper Input Validation.
CVE-2023-30265 1 Cltphp 1 Cltphp 2024-02-04 N/A 6.5 MEDIUM
CLTPHP <=6.0 is vulnerable to Directory Traversal.
CVE-2023-30269 1 Cltphp 1 Cltphp 2024-02-04 N/A 8.1 HIGH
CLTPHP <=6.0 is vulnerable to Improper Input Validation via application/admin/controller/Template.php.
CVE-2023-30267 1 Cltphp 1 Cltphp 2024-02-04 N/A 6.1 MEDIUM
CLTPHP <=6.0 is vulnerable to Cross Site Scripting (XSS) via application/home/controller/Changyan.php.
CVE-2022-1085 1 Cltphp 1 Cltphp 2024-02-04 4.3 MEDIUM 6.1 MEDIUM
A vulnerability was found in CLTPHP up to 6.0. It has been declared as problematic. Affected by this vulnerability is the POST Parameter Handler. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.