Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
mywebland myevent vulnerabilities and exploits
(subscribe to this query)
668
VMScore
CVE-2006-4083
PHP remote file inclusion vulnerability in viewevent.php in myWebland myEvent 1.x allows remote malicious users to execute arbitrary PHP code via a URL in the myevent_path parameter, a different vector than CVE-2006-4040. NOTE: the provenance of this information is unknown; the d...
Mywebland Myevent 1.2
Mywebland Myevent 1.3
668
VMScore
CVE-2006-1890
Multiple PHP remote file inclusion vulnerabilities in myWebland myEvent 1.2 allow remote malicious users to execute arbitrary PHP code via a URL in the myevent_path parameter in (1) event.php and (2) initialize.php. NOTE: vector 2 was later reported to affect 1.4 as well.
Mywebland Myevent 1.2
Mywebland Myevent 1.4
755
VMScore
CVE-2006-4040
PHP remote file inclusion vulnerability in myevent.php in myWebland myEvent 1.3 and previous versions allows remote malicious users to execute arbitrary PHP code via a URL in the myevent_path parameter.
Mywebland Myevent
1 EDB exploit
668
VMScore
CVE-2006-1907
Multiple SQL injection vulnerabilities in myEvent 1.x allow remote malicious users to inject arbitrary SQL commands via the event_id parameter to (1) addevent.php or (2) del.php or (3) event_desc parameter to addevent.php. NOTE: the provenance of this information is unknown; the ...
Mywebland Myevent
231
VMScore
CVE-2006-1908
Cross-site scripting vulnerability in addevent.php in myEvent 1.x allows remote malicious users to inject arbitrary web script or HTML via the event_desc parameter. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Mywebland Myevent
668
VMScore
CVE-2007-3353
PHP remote file inclusion vulnerability in includes/template.php in MyEvent 1.6 allows remote malicious users to execute arbitrary PHP code via a URL in the myevent_path parameter. NOTE: a reliable third party disputes this issue, saying "the entire file is a class.
Mywebland Myevent 1.6
755
VMScore
CVE-2008-4650
SQL injection vulnerability in viewevent.php in myEvent 1.6 allows remote malicious users to execute arbitrary SQL commands via the eventdate parameter.
Mywebland Myevent 1.6
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started