Vulnerabilities (CVE)

  1. OpenCVE
  2. Vulnerabilities (CVE)
Filtered by vendor Cltphp Subscribe
Filtered by product Cltphp
Total 7 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2023-30269 1 Cltphp 1 Cltphp 2025-02-03 N/A 8.1 HIGH
CLTPHP <=6.0 is vulnerable to Improper Input Validation via application/admin/controller/Template.php.
CVE-2023-30267 1 Cltphp 1 Cltphp 2025-02-03 N/A 6.1 MEDIUM
CLTPHP <=6.0 is vulnerable to Cross Site Scripting (XSS) via application/home/controller/Changyan.php.
CVE-2023-30266 1 Cltphp 1 Cltphp 2025-02-03 N/A 8.8 HIGH
CLTPHP <=6.0 is vulnerable to Unrestricted Upload of File with Dangerous Type.
CVE-2023-30265 1 Cltphp 1 Cltphp 2025-02-03 N/A 6.5 MEDIUM
CLTPHP <=6.0 is vulnerable to Directory Traversal.
CVE-2023-30268 2 Cltphp, Microsoft 2 Cltphp, Windows 2025-01-29 N/A 9.8 CRITICAL
CLTPHP <=6.0 is vulnerable to Improper Input Validation.
CVE-2023-30264 1 Cltphp 1 Cltphp 2025-01-29 N/A 9.8 CRITICAL
CLTPHP <=6.0 is vulnerable to Unrestricted Upload of File with Dangerous Type via application/admin/controller/Template.php:update.
CVE-2022-1085 1 Cltphp 1 Cltphp 2024-11-21 4.3 MEDIUM 3.5 LOW
A vulnerability was found in CLTPHP up to 6.0. It has been declared as problematic. Affected by this vulnerability is the POST Parameter Handler. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.