Cltphp

cltphp

7 CVEs • 1 product

Products (1)

Click to collapse

Toggle

CVEs (7)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2023-30268 1Cltphp 1Cltphp Jun 17, 2026 May 4, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 CLTPHP <=6.0 is vulnerable to Improper Input Validation.
CVE-2023-30264 1Cltphp 1Cltphp Jun 17, 2026 May 4, 2023 N/A· v4 9.8 CRITICAL· v3 N/A· v2 CLTPHP <=6.0 is vulnerable to Unrestricted Upload of File with Dangerous Type via application/admin/controller/Template.php:update.
CVE-2023-30269 1Cltphp 1Cltphp Jun 17, 2026 Apr 26, 2023 N/A· v4 8.1 HIGH· v3 N/A· v2 CLTPHP <=6.0 is vulnerable to Improper Input Validation via application/admin/controller/Template.php.
CVE-2023-30267 1Cltphp 1Cltphp Jun 17, 2026 Apr 26, 2023 N/A· v4 6.1 MEDIUM· v3 N/A· v2 CLTPHP <=6.0 is vulnerable to Cross Site Scripting (XSS) via application/home/controller/Changyan.php.
CVE-2023-30266 1Cltphp 1Cltphp Jun 17, 2026 Apr 26, 2023 N/A· v4 8.8 HIGH· v3 N/A· v2 CLTPHP <=6.0 is vulnerable to Unrestricted Upload of File with Dangerous Type.
CVE-2023-30265 1Cltphp 1Cltphp Jun 17, 2026 Apr 26, 2023 N/A· v4 6.5 MEDIUM· v3 N/A· v2 CLTPHP <=6.0 is vulnerable to Directory Traversal.
CVE-2022-1085 1Cltphp 1Cltphp Jun 17, 2026 Mar 29, 2022 N/A· v4 6.1 MEDIUM· v3 4.3 MEDIUM· v2 A vulnerability was found in CLTPHP up to 6.0. It has been declared as problematic. Affected by this vulnerability is the POST Parameter Handler. The manipulation leads to cross site scripting. The attack can be launched...Show more A vulnerability was found in CLTPHP up to 6.0. It has been declared as problematic. Affected by this vulnerability is the POST Parameter Handler. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and may be used.Show less