CLTPHP
Products
1- 8 CVEs
Recent CVEs
8| CVE | Vendor / Product | Sev | Risk | CVSS | EPSS | KEV | Published | Description |
|---|---|---|---|---|---|---|---|---|
| CVE-2023-30268 | Cri | 0.64 | 9.8 | 0.01 | May 4, 2023 | CLTPHP <=6.0 is vulnerable to Improper Input Validation. | ||
| CVE-2023-30264 | Cri | 0.64 | 9.8 | 0.01 | May 4, 2023 | CLTPHP <=6.0 is vulnerable to Unrestricted Upload of File with Dangerous Type via application/admin/controller/Template.php:update. | ||
| CVE-2023-30266 | Hig | 0.57 | 8.8 | 0.01 | Apr 26, 2023 | CLTPHP <=6.0 is vulnerable to Unrestricted Upload of File with Dangerous Type. | ||
| CVE-2023-30269 | Hig | 0.53 | 8.1 | 0.01 | Apr 26, 2023 | CLTPHP <=6.0 is vulnerable to Improper Input Validation via application/admin/controller/Template.php. | ||
| CVE-2025-12248 | Hig | 0.47 | 7.3 | 0.00 | Oct 27, 2025 | A security vulnerability has been detected in CLTPHP 3.0. The affected element is an unknown function of the file /home/search.html. Such manipulation of the argument keyword leads to sql injection. The attack may be performed from remote. The exploit has been disclosed publicly… | ||
| CVE-2023-30265 | Med | 0.42 | 6.5 | 0.01 | Apr 26, 2023 | CLTPHP <=6.0 is vulnerable to Directory Traversal. | ||
| CVE-2023-30267 | Med | 0.40 | 6.1 | 0.00 | Apr 26, 2023 | CLTPHP <=6.0 is vulnerable to Cross Site Scripting (XSS) via application/home/controller/Changyan.php. | ||
| CVE-2022-1085 | Low | 0.23 | 3.5 | 0.01 | Mar 29, 2022 | A vulnerability was found in CLTPHP up to 6.0. It has been declared as problematic. Affected by this vulnerability is the POST Parameter Handler. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and… |
- risk 0.64cvss 9.8epss 0.01
CLTPHP <=6.0 is vulnerable to Improper Input Validation.
- risk 0.64cvss 9.8epss 0.01
CLTPHP <=6.0 is vulnerable to Unrestricted Upload of File with Dangerous Type via application/admin/controller/Template.php:update.
- risk 0.57cvss 8.8epss 0.01
CLTPHP <=6.0 is vulnerable to Unrestricted Upload of File with Dangerous Type.
- risk 0.53cvss 8.1epss 0.01
CLTPHP <=6.0 is vulnerable to Improper Input Validation via application/admin/controller/Template.php.
- risk 0.47cvss 7.3epss 0.00
A security vulnerability has been detected in CLTPHP 3.0. The affected element is an unknown function of the file /home/search.html. Such manipulation of the argument keyword leads to sql injection. The attack may be performed from remote. The exploit has been disclosed publicly…
- risk 0.42cvss 6.5epss 0.01
CLTPHP <=6.0 is vulnerable to Directory Traversal.
- risk 0.40cvss 6.1epss 0.00
CLTPHP <=6.0 is vulnerable to Cross Site Scripting (XSS) via application/home/controller/Changyan.php.
- risk 0.23cvss 3.5epss 0.01
A vulnerability was found in CLTPHP up to 6.0. It has been declared as problematic. Affected by this vulnerability is the POST Parameter Handler. The manipulation leads to cross site scripting. The attack can be launched remotely. The exploit has been disclosed to the public and…