Vulnerabilities > Elizsoftware

DATE CVE VULNERABILITY TITLE RISK
2024-09-18 CVE-2024-5958 SQL Injection vulnerability in Elizsoftware Panel
Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Eliz Software Panel allows Command Line Execution through SQL Injection.This issue affects Panel: before v2.3.24.
network
low complexity
elizsoftware CWE-89
8.8
2024-09-18 CVE-2024-5959 Cross-site Scripting vulnerability in Elizsoftware Panel
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Eliz Software Panel allows Stored XSS.This issue affects Panel: before v2.3.24.
network
low complexity
elizsoftware CWE-79
5.4
2024-09-18 CVE-2024-5960 Unspecified vulnerability in Elizsoftware Panel
Plaintext Storage of a Password vulnerability in Eliz Software Panel allows : Use of Known Domain Credentials.This issue affects Panel: before v2.3.24.
network
low complexity
elizsoftware
5.5
2024-09-18 CVE-2024-6877 Cross-site Scripting vulnerability in Elizsoftware Panel
Improper Neutralization of Input During Web Page Generation (XSS or 'Cross-site Scripting') vulnerability in Eliz Software Panel allows Reflected XSS.This issue affects Panel: before v2.3.24.
network
low complexity
elizsoftware CWE-79
6.1