Product:

Empirecms

(Phome)
Repositories

Unknown:

This might be proprietary software.
#Vulnerabilities 15
Date Id Summary Products Score Patch Annotated
2024-01-09 CVE-2023-50162 SQL injection vulnerability in EmpireCMS v7.5, allows remote attackers to execute arbitrary code and obtain sensitive information via the DoExecSql function. Empirecms 7.2
2021-08-17 CVE-2020-22937 A remote code execution (RCE) in e/install/index.php of EmpireCMS 7.5 allows attackers to execute arbitrary PHP code via writing malicious code to the install file. Empirecms 9.8
2022-05-03 CVE-2022-28585 EmpireCMS 7.5 has a SQL injection vulnerability in AdClass.php Empirecms 9.8
2019-06-07 CVE-2018-19461 admin\db\DoSql.php in EmpireCMS through 7.5 allows XSS via crafted SQL syntax to admin/admin.php. Empirecms 4.8
2019-06-07 CVE-2018-19462 admin\db\DoSql.php in EmpireCMS through 7.5 allows remote attackers to execute arbitrary PHP code via SQL injection that uses a .php filename in a SELECT INTO OUTFILE statement to admin/admin.php. Empirecms 7.2