Skip to main content

Espcms P8

2 CVEs product

Monthly

CVE-2022-33085 HIGH POC This Week

ESPCMS P8 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the fetch_filename function at \espcms_public\espcms_templates\ESPCMS_Templates. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Espcms P8
NVD GitHub
CVSS 3.1
7.2
EPSS
1.8%
CVE-2019-5488 HIGH POC This Week

EARCLINK ESPCMS-P8 has SQL injection in the install_pack/index.php?ac=Member&at=verifyAccount verify_key parameter. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Espcms P8
NVD
CVSS 3.0
7.5
EPSS
1.2%
EPSS 2% CVSS 7.2
HIGH POC This Week

ESPCMS P8 was discovered to contain an authenticated remote code execution (RCE) vulnerability via the fetch_filename function at \espcms_public\espcms_templates\ESPCMS_Templates. Rated high severity (CVSS 7.2), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

RCE Espcms P8
NVD GitHub
EPSS 1% CVSS 7.5
HIGH POC This Week

EARCLINK ESPCMS-P8 has SQL injection in the install_pack/index.php?ac=Member&at=verifyAccount verify_key parameter. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.

SQLi PHP Espcms P8
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy