CVE-2025-12248
- EPSS 0.05%
- Veröffentlicht 27.10.2025 08:15:37
- Zuletzt bearbeitet 27.10.2025 13:19:49
A security vulnerability has been detected in CLTPHP 3.0. The affected element is an unknown function of the file /home/search.html. Such manipulation of the argument keyword leads to sql injection. The attack may be performed from remote. The exploi...
CVE-2023-30264
- EPSS 0.14%
- Veröffentlicht 04.05.2023 20:15:10
- Zuletzt bearbeitet 29.01.2025 20:15:32
CLTPHP <=6.0 is vulnerable to Unrestricted Upload of File with Dangerous Type via application/admin/controller/Template.php:update.
CVE-2023-30268
- EPSS 0.22%
- Veröffentlicht 04.05.2023 20:15:10
- Zuletzt bearbeitet 29.01.2025 20:15:32
CLTPHP <=6.0 is vulnerable to Improper Input Validation.
CVE-2023-30265
- EPSS 0.34%
- Veröffentlicht 26.04.2023 14:15:09
- Zuletzt bearbeitet 03.02.2025 18:15:31
CLTPHP <=6.0 is vulnerable to Directory Traversal.
CVE-2023-30266
- EPSS 0.17%
- Veröffentlicht 26.04.2023 14:15:09
- Zuletzt bearbeitet 03.02.2025 18:15:31
CLTPHP <=6.0 is vulnerable to Unrestricted Upload of File with Dangerous Type.
CVE-2023-30267
- EPSS 0.11%
- Veröffentlicht 26.04.2023 14:15:09
- Zuletzt bearbeitet 03.02.2025 18:15:32
CLTPHP <=6.0 is vulnerable to Cross Site Scripting (XSS) via application/home/controller/Changyan.php.
CVE-2023-30269
- EPSS 0.09%
- Veröffentlicht 26.04.2023 14:15:09
- Zuletzt bearbeitet 03.02.2025 18:15:32
CLTPHP <=6.0 is vulnerable to Improper Input Validation via application/admin/controller/Template.php.
CVE-2022-1085
- EPSS 0.19%
- Veröffentlicht 29.03.2022 06:15:08
- Zuletzt bearbeitet 21.11.2024 06:40:00
A vulnerability was found in CLTPHP up to 6.0. It has been declared as problematic. Affected by this vulnerability is the POST Parameter Handler. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has bee...