Shodan
Vulnerabilities
Vulnerable Software
Elitecms:  Security Vulnerabilities
CVE-2022-40361
Cross Site Scripting Vulnerability in Elite CRM v1.2.11 allows attacker to execute arbitrary code via the language parameter to the /ngs/login endpoint.
CVSS Score
6.1
EPSS Score
0.003
Published
2024-01-11
CVE-2023-42331
A file upload vulnerability in EliteCMS v1.01 allows a remote attacker to execute arbitrary code via the manage_uploads.php component.
CVSS Score
8.8
EPSS Score
0.011
Published
2023-09-20
CVE-2022-30804
elitecms v1.01 is vulnerable to Delete any file via /admin/delete_image.php?file=.
CVSS Score
6.5
EPSS Score
0.004
Published
2022-06-02
CVE-2022-30808
elitecms 1.0.1 is vulnerable to Arbitrary code execution via admin/manage_uploads.php.
CVSS Score
9.8
EPSS Score
0.012
Published
2022-06-02
CVE-2022-30809
elitecms 1.01 is vulnerable to SQL Injection via /admin/edit_page.php?page=.
CVSS Score
9.8
EPSS Score
0.003
Published
2022-06-02
CVE-2022-30810
elitecms v1.01 is vulnerable to SQL Injection via admin/edit_post.php.
CVSS Score
9.8
EPSS Score
0.003
Published
2022-06-02
CVE-2022-30813
elitecms 1.01 is vulnerable to SQL Injection via /admin/add_post.php.
CVSS Score
9.8
EPSS Score
0.003
Published
2022-06-02
CVE-2022-30814
elitecms v1.01 is vulnerable to SQL Injection via /admin/add_sidebar.php.
CVSS Score
9.8
EPSS Score
0.003
Published
2022-06-02
CVE-2022-30815
elitecms 1.01 is vulnerable to SQL Injection via admin/edit_sidebar.php?page=2&sidebar=
CVSS Score
9.8
EPSS Score
0.003
Published
2022-06-02
CVE-2022-30816
elitecms 1.01 is vulnerable to SQL Injection via /admin/edit_sidebar.php.
CVSS Score
9.8
EPSS Score
0.003
Published
2022-06-02


Products
Pricing
Contact Us

Shodan ® - All rights reserved