Sitejo Hape Pkh
6 CVEs affecting Sitejo Hape Pkh. Latest disclosed: 2026-05-29. Critical: 0, High: 5.
| CVE | Severity | Score | Published | Summary |
|---|---|---|---|---|
CVE-2018-25388 | High | 8.8 | 2026-05-29 | HaPe PKH 1.1 contains an arbitrary file upload vulnerability that allows authenticated attackers to upload malicious files by bypassing file type validation. A… |
CVE-2018-25390 | High | 8.2 | 2026-05-29 | HaPe PKH 1.1 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'de… |
CVE-2018-25389 | High | 8.2 | 2026-05-29 | HaPe PKH 1.1 contains an SQL injection vulnerability that allows unauthenticated attackers to manipulate database queries by injecting SQL code through the 'na… |
CVE-2018-25386 | High | 8.2 | 2026-05-29 | HaPe PKH 1.1 contains multiple SQL injection vulnerabilities in admin/media.php that allow attackers to manipulate database queries by injecting SQL code throu… |
CVE-2018-25391 | High | 7.5 | 2026-05-29 | HaPe PKH 1.1 fails to enforce authorization on its record deletion endpoints, allowing unauthenticated attackers to delete arbitrary records by sending a craft… |
CVE-2018-25387 | Medium | 5.3 | 2026-05-29 | HaPe PKH 1.1 contains a cross-site request forgery vulnerability that allows attackers to change administrator passwords by submitting forged requests to the u… |