FAIL › dossier
· dossier confidence 50%
ECISP is a software vendor with a critical security track record, evidenced by three simultaneous RCE vulnerabilities in November 2022.
Critical vulnerabilities in ESPCMS components were disclosed in November 2022, including three distinct Remote Code Execution (RCE) flaws.
| Date | Event | Sev | Flags | Shame | Summary |
|---|---|---|---|---|---|
| 2022-11-10 | CVE-2022-44088 | critical | ⚡RCE | 50 | ESPCMS P8.21120101 was discovered to contain a remote code execution (RCE) vulnerability in the component INPUT_ISDESCRIPTION. |
| 2022-11-10 | CVE-2022-44089 | critical | ⚡RCE | 50 | ESPCMS P8.21120101 was discovered to contain a remote code execution (RCE) vulnerability in the component IS_GETCACHE. |
| 2022-11-10 | CVE-2022-44087 | critical | ⚡RCE | 50 | ESPCMS P8.21120101 was discovered to contain a remote code execution (RCE) vulnerability in the component UPFILE_PIC_ZOOM_HIGHT. |
Open questions: Company founding date · Headquarters location · Company size · Ownership structure · Website URL