Vulnerabilities (CVE)

Join the Common Vulnerabilities and Exposures (CVE) community and start to get notified about new vulnerabilities.

Filtered by vendor Elitecms Subscribe
Filtered by product Elite Cms
Total 15 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2022-30804 1 Elitecms 1 Elite Cms 2022-06-10 5.5 MEDIUM 6.5 MEDIUM
elitecms v1.01 is vulnerable to Delete any file via /admin/delete_image.php?file=.
CVE-2022-30808 1 Elitecms 1 Elite Cms 2022-06-10 7.5 HIGH 9.8 CRITICAL
elitecms 1.0.1 is vulnerable to Arbitrary code execution via admin/manage_uploads.php.
CVE-2022-30809 1 Elitecms 1 Elite Cms 2022-06-10 7.5 HIGH 9.8 CRITICAL
elitecms 1.01 is vulnerable to SQL Injection via /admin/edit_page.php?page=.
CVE-2022-30816 1 Elitecms 1 Elite Cms 2022-06-10 7.5 HIGH 9.8 CRITICAL
elitecms 1.01 is vulnerable to SQL Injection via /admin/edit_sidebar.php.
CVE-2022-30815 1 Elitecms 1 Elite Cms 2022-06-10 7.5 HIGH 9.8 CRITICAL
elitecms 1.01 is vulnerable to SQL Injection via admin/edit_sidebar.php?page=2&sidebar=
CVE-2022-30814 1 Elitecms 1 Elite Cms 2022-06-10 7.5 HIGH 9.8 CRITICAL
elitecms v1.01 is vulnerable to SQL Injection via /admin/add_sidebar.php.
CVE-2022-30813 1 Elitecms 1 Elite Cms 2022-06-10 7.5 HIGH 9.8 CRITICAL
elitecms 1.01 is vulnerable to SQL Injection via /admin/add_post.php.
CVE-2022-30810 1 Elitecms 1 Elite Cms 2022-06-10 7.5 HIGH 9.8 CRITICAL
elitecms v1.01 is vulnerable to SQL Injection via admin/edit_post.php.
CVE-2022-24218 1 Elitecms 1 Elite Cms 2022-02-04 6.4 MEDIUM 9.1 CRITICAL
An issue in /admin/delete_image.php of eliteCMS v1.0 allows attackers to delete arbitrary files.
CVE-2021-46093 1 Elitecms 1 Elite Cms 2022-02-02 7.5 HIGH 9.8 CRITICAL
eliteCMS v1.0 is vulnerable to Insecure Permissions via manage_uploads.php.
CVE-2022-24222 1 Elitecms 1 Elite Cms 2022-02-02 7.5 HIGH 9.8 CRITICAL
eliteCMS v1.0 was discovered to contain a SQL injection vulnerability via /admin/edit_user.php.
CVE-2022-24219 1 Elitecms 1 Elite Cms 2022-02-02 7.5 HIGH 9.8 CRITICAL
eliteCMS v1.0 was discovered to contain a SQL injection vulnerability via /admin/edit_page.php.
CVE-2022-24220 1 Elitecms 1 Elite Cms 2022-02-02 7.5 HIGH 9.8 CRITICAL
eliteCMS v1.0 was discovered to contain a SQL injection vulnerability via /admin/edit_post.php.
CVE-2022-24221 1 Elitecms 1 Elite Cms 2022-02-02 7.5 HIGH 9.8 CRITICAL
eliteCMS v1.0 was discovered to contain a SQL injection vulnerability via /admin/functions/functions.php.
CVE-2018-12250 1 Elitecms 1 Elite Cms 2019-07-05 6.5 MEDIUM 7.2 HIGH
An issue was discovered in Elite CMS Pro 2.01. In /admin/add_sidebar.php, the ?page= parameter is vulnerable to SQL injection.