Filtered by vendor Earclink
Subscribe
Total
2 CVE
| CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
|---|---|---|---|---|---|
| CVE-2020-20125 | 1 Earclink | 1 Espcms-p8 | 2024-11-21 | 4.3 MEDIUM | 6.1 MEDIUM |
| EARCLINK ESPCMS-P8 contains a cross-site scripting (XSS) vulnerability in espcms_web\espcms_load.php. | |||||
| CVE-2019-5488 | 1 Earclink | 1 Espcms-p8 | 2024-11-21 | 5.0 MEDIUM | 7.5 HIGH |
| EARCLINK ESPCMS-P8 has SQL injection in the install_pack/index.php?ac=Member&at=verifyAccount verify_key parameter. install_pack/espcms_public/espcms_db.php may allow retrieving sensitive information from the ESPCMS database. | |||||