Skip to main content

Cltphp

7 CVEs product

Monthly

CVE-2023-30268 CRITICAL Act Now

CLTPHP <=6.0 is vulnerable to Improper Input Validation. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal Cltphp
NVD GitHub
CVSS 3.1
9.8
EPSS
0.8%
CVE-2023-30264 CRITICAL Act Now

CLTPHP <=6.0 is vulnerable to Unrestricted Upload of File with Dangerous Type via application/admin/controller/Template.php:update. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

File Upload PHP Cltphp
NVD GitHub
CVSS 3.1
9.8
EPSS
0.7%
CVE-2023-30269 HIGH This Week

CLTPHP <=6.0 is vulnerable to Improper Input Validation via application/admin/controller/Template.php. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure PHP Cltphp
NVD GitHub
CVSS 3.1
8.1
EPSS
0.7%
CVE-2023-30267 MEDIUM This Month

CLTPHP <=6.0 is vulnerable to Cross Site Scripting (XSS) via application/home/controller/Changyan.php. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

PHP XSS Cltphp
NVD GitHub
CVSS 3.1
6.1
EPSS
0.4%
CVE-2023-30266 HIGH This Week

CLTPHP <=6.0 is vulnerable to Unrestricted Upload of File with Dangerous Type. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

File Upload Cltphp
NVD GitHub
CVSS 3.1
8.8
EPSS
0.8%
CVE-2023-30265 MEDIUM This Month

CLTPHP <=6.0 is vulnerable to Directory Traversal. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Path Traversal Cltphp
NVD GitHub
CVSS 3.1
6.5
EPSS
1.0%
CVE-2022-1085 MEDIUM This Month

A vulnerability was found in CLTPHP up to 6.0. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Cltphp
NVD VulDB
CVSS 3.1
6.1
EPSS
0.6%
EPSS 1% CVSS 9.8
CRITICAL Act Now

CLTPHP <=6.0 is vulnerable to Improper Input Validation. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

Path Traversal Cltphp
NVD GitHub
EPSS 1% CVSS 9.8
CRITICAL Act Now

CLTPHP <=6.0 is vulnerable to Unrestricted Upload of File with Dangerous Type via application/admin/controller/Template.php:update. Rated critical severity (CVSS 9.8), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

File Upload PHP Cltphp
NVD GitHub
EPSS 1% CVSS 8.1
HIGH This Week

CLTPHP <=6.0 is vulnerable to Improper Input Validation via application/admin/controller/Template.php. Rated high severity (CVSS 8.1), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Information Disclosure PHP Cltphp
NVD GitHub
EPSS 0% CVSS 6.1
MEDIUM This Month

CLTPHP <=6.0 is vulnerable to Cross Site Scripting (XSS) via application/home/controller/Changyan.php. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

PHP XSS Cltphp
NVD GitHub
EPSS 1% CVSS 8.8
HIGH This Week

CLTPHP <=6.0 is vulnerable to Unrestricted Upload of File with Dangerous Type. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

File Upload Cltphp
NVD GitHub
EPSS 1% CVSS 6.5
MEDIUM This Month

CLTPHP <=6.0 is vulnerable to Directory Traversal. Rated medium severity (CVSS 6.5), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

Path Traversal Cltphp
NVD GitHub
EPSS 1% CVSS 6.1
MEDIUM This Month

A vulnerability was found in CLTPHP up to 6.0. Rated medium severity (CVSS 6.1), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.

XSS Cltphp
NVD VulDB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy