Vulnerabilities (CVE)

Filtered by vendor Intelliants Subscribe
Filtered by product Elitius
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2009-1659 1 Intelliants 1 Elitius 2024-11-21 6.8 MEDIUM N/A
Unrestricted file upload vulnerability in admin/uploadimage.php in eLitius 1.0 allows remote attackers to bypass intended access restrictions and upload and execute arbitrary files via an avatar file with an accepted Content-Type such as image/gif, then requesting the file in admin/banners/.
CVE-2009-1506 1 Intelliants 1 Elitius 2024-11-21 6.8 MEDIUM N/A
SQL injection vulnerability in classes/Xp.php in eLitius 1.0 allows remote attackers to execute arbitrary SQL commands via the id parameter to banner-details.php.