Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
eva-web vulnerabilities and exploits
(subscribe to this query)
6.8
CVSSv2
CVE-2006-2689
Multiple cross-site scripting (XSS) vulnerabilities in EVA-Web 2.1.2 and previous versions allow remote malicious users to inject arbitrary web script or HTML via the (1) debut_image parameter in (a) article-album.php3, (2) date parameter in (b) rubrique.php3, and the (3) perso a...
Eva-web Eva-web
3 EDB exploits
7.5
CVSSv2
CVE-2007-3460
Multiple PHP remote file inclusion vulnerabilities in index.php3 in EVA-Web 1.1 up to and including 2.2 allow remote malicious users to execute arbitrary PHP code via a URL in the (1) aide or (2) perso parameter.
Eva-web Eva-web
1 EDB exploit
7.8
CVSSv2
CVE-2006-2690
An unspecified script in EVA-Web 2.1.2 and previous versions, probably index.php, allows remote malicious users to obtain the full path of the web server via invalid (1) perso or (2) aide parameters.
Eva-web Eva-web
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started