VYPR
Vendor

LaikeTui

Products
1
CVEs
4
Across products
4
Status
Private

Products

1

Recent CVEs

4
  • CVE-2021-40954CriJun 23, 2022
    risk 0.64cvss 9.8epss 0.02

    Laiketui 3.5.0 is affected by an arbitrary file upload vulnerability that can allow an attacker to execute arbitrary code.

  • CVE-2020-19159HigSep 15, 2021
    risk 0.57cvss 8.8epss 0.01

    Cross Site Request Forgery (CSRF) in LaikeTui v3 allows remote attackers to execute arbitrary code via the component '/index.php?module=member&action=add'.

  • CVE-2021-40956HigJun 23, 2022
    risk 0.49cvss 7.5epss 0.01

    LaiKetui v3.5.0 has SQL injection in the background through the menu management function, and sensitive data can be obtained.

  • CVE-2021-40955HigJun 23, 2022
    risk 0.47cvss 7.2epss 0.01

    SQL injection exists in LaiKetui v3.5.0 the background administrator list.