Elcom Cms
1 CVEs
product
Monthly
Elcom CMS before 10.7 has SQL Injection via EventSearchByState.aspx and EventSearchAdv.aspx. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
SQLi
Elcom Cms
NVD
CVSS 3.0
7.5
EPSS
1.4%
EPSS 1%
CVSS 7.5
HIGH
This Week
Elcom CMS before 10.7 has SQL Injection via EventSearchByState.aspx and EventSearchAdv.aspx. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. No vendor patch available.
SQLi
Elcom Cms
NVD