Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
eid vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2021-40025
The eID module has a vulnerability that causes the memory to be used without being initialized,Successful exploitation of this vulnerability may affect data confidentiality.
Huawei Harmonyos
9.8
CVSSv3
CVE-2018-17394
SQL Injection exists in the Timetable Schedule 3.6.8 component for Joomla! via the eid parameter.
Osthemeclub Timetable Schedule 3.6.8
1 EDB exploit
NA
CVE-2004-1530
SQL injection vulnerability in the Event Calendar module 2.13 for PHP-Nuke allows remote malicious users to execute arbitrary SQL commands via the (1) eid or (2) cid parameters.
NA
CVE-2009-1316
Multiple SQL injection vulnerabilities in AbleSpace 1.0 allow remote malicious users to execute arbitrary SQL commands via the (1) eid parameter to events_view.php and the (2) id parameter to events_clndr_view.php.
Abk-soft Ablespace 1.0
1 EDB exploit
NA
CVE-2006-6369
SQL injection vulnerability in lib/entry_reply_entry.php in Invision Community Blog Mod 1.2.4 allows remote malicious users to execute arbitrary SQL commands via the eid parameter, when accessed through the "Preview message" functionality.
Invision Power Services Invision Community Blog 1.2.4
1 EDB exploit
9.8
CVSSv3
CVE-2018-15145
Multiple SQL injection vulnerabilities in portal/add_edit_event_user.php in versions of OpenEMR prior to 5.0.1.4 allow a remote malicious user to execute arbitrary SQL commands via the (1) eid, (2) userid, or (3) pid parameter.
Open-emr Openemr
NA
CVE-2008-3588
Multiple SQL injection vulnerabilities in phsBlog 0.1.1 allow remote malicious users to execute arbitrary SQL commands via the (1) eid parameter to comments.php, (2) cid parameter to index.php, and the (3) urltitle parameter to entries.php.
Phsblog Phsblog 0.1.1
1 EDB exploit
8.8
CVSSv3
CVE-2023-45117
Online Examination System v1.0 is vulnerable to multiple Authenticated SQL Injection vulnerabilities. The 'eid' parameter of the /update.php?q=rmquiz resource does not validate the characters received and they are sent unfiltered to the database.
Projectworlds Online Examination System 1.0
6.1
CVSSv3
CVE-2019-7332
Reflected Cross Site Scripting (XSS) exists in ZoneMinder up to and including 1.32.3, allowing an malicious user to execute HTML or JavaScript code via a vulnerable 'eid' (aka Event ID) parameter value in the view download (download.php) because proper filtration is omi...
Zoneminder Zoneminder
NA
CVE-2005-1946
Multiple SQL injection vulnerabilities in Invision Blog prior to 1.1.2 Final allow remote malicious users to execute arbitrary SQL commands via the (1) eid parameter to an editentry, replyentry, or editcomment action, or (2) the mid parameter to an aboutme action.
Invision Power Services Invision Community Blog 1.0
Invision Power Services Invision Community Blog 1.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48693
CVE-2024-30851
CVE-2024-34460
CVE-2024-2887
local
CVE-2024-27956
remote code execution
CVE-2024-34475
privilege
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »