Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
eventum project eventum vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2018-11569
Controller/ListController.php in Eventum 3.5.0 is vulnerable to Deserialization of Untrusted Data. Fixed in version 3.5.2.
Eventum Project Eventum
8.8
CVSSv3
CVE-2018-12628
An issue exists in Eventum 3.5.0. CSRF in htdocs/manage/users.php allows creating another user with admin privileges.
Eventum Project Eventum
8.1
CVSSv3
CVE-2014-1632
htdocs/setup/index.php in Eventum prior to 2.3.5 allows remote malicious users to inject and execute arbitrary PHP code via the hostname parameter.
Eventum Project Eventum
1 EDB exploit
7.5
CVSSv3
CVE-2014-1631
Eventum prior to 2.3.5 allows remote malicious users to reinstall the application via direct request to /setup/index.php.
Eventum Project Eventum
2 EDB exploits
6.1
CVSSv3
CVE-2018-12622
An issue exists in Eventum 3.5.0. htdocs/ajax/update.php has XSS via the field_name parameter.
Eventum Project Eventum
6.1
CVSSv3
CVE-2018-12626
An issue exists in Eventum 3.5.0. /htdocs/popup.php has XSS via the cat parameter.
Eventum Project Eventum
6.1
CVSSv3
CVE-2018-12625
An issue exists in Eventum 3.5.0. /htdocs/validate.php has XSS via the values parameter.
Eventum Project Eventum
6.1
CVSSv3
CVE-2018-12627
An issue exists in Eventum 3.5.0. /htdocs/list.php has XSS via the show_notification_list_issues or show_authorized_issues parameter.
Eventum Project Eventum
6.1
CVSSv3
CVE-2018-12623
An issue exists in Eventum 3.5.0. htdocs/switch.php has XSS via the current_page parameter.
Eventum Project Eventum
6.1
CVSSv3
CVE-2018-12621
An issue exists in Eventum 3.5.0. /htdocs/switch.php has an Open Redirect via the current_page parameter.
Eventum Project Eventum 3.5.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37316
firmware
CVE-2024-30078
CVE-2024-5995
remote code execution
logic flaw
CVE-2024-20693
CVE-2024-37315
CVE-2024-5464
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
NEXT »