Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mywebland myevent vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-1890
Multiple PHP remote file inclusion vulnerabilities in myWebland myEvent 1.2 allow remote malicious users to execute arbitrary PHP code via a URL in the myevent_path parameter in (1) event.php and (2) initialize.php. NOTE: vector 2 was later reported to affect 1.4 as well.
Mywebland Myevent 1.2
Mywebland Myevent 1.4
NA
CVE-2006-4083
PHP remote file inclusion vulnerability in viewevent.php in myWebland myEvent 1.x allows remote malicious users to execute arbitrary PHP code via a URL in the myevent_path parameter, a different vector than CVE-2006-4040. NOTE: the provenance of this information is unknown; the d...
Mywebland Myevent 1.2
Mywebland Myevent 1.3
NA
CVE-2006-4040
PHP remote file inclusion vulnerability in myevent.php in myWebland myEvent 1.3 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the myevent_path parameter.
Mywebland Myevent
1 EDB exploit
NA
CVE-2006-1907
Multiple SQL injection vulnerabilities in myEvent 1.x allow remote malicious users to inject arbitrary SQL commands via the event_id parameter to (1) addevent.php or (2) del.php or (3) event_desc parameter to addevent.php. NOTE: the provenance of this information is unknown; the ...
Mywebland Myevent
NA
CVE-2006-1908
Cross-site scripting vulnerability in addevent.php in myEvent 1.x allows remote malicious users to inject arbitrary web script or HTML via the event_desc parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Mywebland Myevent
NA
CVE-2007-3353
PHP remote file inclusion vulnerability in includes/template.php in MyEvent 1.6 allows remote malicious users to execute arbitrary PHP code via a URL in the myevent_path parameter. NOTE: a reliable third party disputes this issue, saying "the entire file is a class.
Mywebland Myevent 1.6
NA
CVE-2008-4650
SQL injection vulnerability in viewevent.php in myEvent 1.6 allows remote malicious users to execute arbitrary SQL commands via the eventdate parameter.
Mywebland Myevent 1.6
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2020-4463
CVE-2024-29895
inject
CVE-2023-52689
CVE-2024-5049
CVE-2024-5051
privilege escalation
physical
CVE-2023-52676
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started