Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
eventum project eventum vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-11569
Controller/ListController.php in Eventum 3.5.0 is vulnerable to Deserialization of Untrusted Data. Fixed in version 3.5.2.
Eventum Project Eventum
6.1
CVSSv3
CVE-2018-12622
An issue exists in Eventum 3.5.0. htdocs/ajax/update.php has XSS via the field_name parameter.
Eventum Project Eventum
6.1
CVSSv3
CVE-2018-12623
An issue exists in Eventum 3.5.0. htdocs/switch.php has XSS via the current_page parameter.
Eventum Project Eventum
6.1
CVSSv3
CVE-2018-12625
An issue exists in Eventum 3.5.0. /htdocs/validate.php has XSS via the values parameter.
Eventum Project Eventum
6.1
CVSSv3
CVE-2018-12626
An issue exists in Eventum 3.5.0. /htdocs/popup.php has XSS via the cat parameter.
Eventum Project Eventum
6.1
CVSSv3
CVE-2018-12627
An issue exists in Eventum 3.5.0. /htdocs/list.php has XSS via the show_notification_list_issues or show_authorized_issues parameter.
Eventum Project Eventum
8.8
CVSSv3
CVE-2018-12628
An issue exists in Eventum 3.5.0. CSRF in htdocs/manage/users.php allows creating another user with admin privileges.
Eventum Project Eventum
6.1
CVSSv3
CVE-2018-12621
An issue exists in Eventum 3.5.0. /htdocs/switch.php has an Open Redirect via the current_page parameter.
Eventum Project Eventum 3.5.0
6.1
CVSSv3
CVE-2018-12624
An issue exists in Eventum 3.5.0. /htdocs/post_note.php has XSS via the garlic_prefix parameter.
Eventum Project Eventum 3.5.0
6.1
CVSSv3
CVE-2018-16761
Eventum prior to 3.4.0 has an open redirect vulnerability.
Eventum Project Eventum
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »