Vulnerabilities > Schlix
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2024-01-31 | CVE-2023-31505 | Unrestricted Upload of File with Dangerous Type vulnerability in Schlix CMS 2.2.81 An arbitrary file upload vulnerability in Schlix CMS v2.2.8-1, allows remote authenticated attackers to execute arbitrary code and obtain sensitive information via a crafted .phtml file. | 7.2 |
| 2023-02-07 | CVE-2022-45544 | Incorrect Authorization vulnerability in Schlix CMS 2.2.72 Insecure Permission vulnerability in Schlix Web Inc SCHLIX CMS 2.2.7-2 allows attacker to upload arbitrary files and execute arbitrary code via the tristao parameter. | 8.8 |
| 2019-10-24 | CVE-2019-11021 | Unrestricted Upload of File with Dangerous Type vulnerability in Schlix CMS 2.1.87 admin/app/mediamanager in Schlix CMS 2.1.8-7 allows Authenticated Unrestricted File Upload, leading to remote code execution. | 7.2 |