CVE-2018-12625

2019-07-1012:15:10

Google

osv.dev

5.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

26.7%

JSON

An issue was discovered in Eventum 3.5.0. /htdocs/validate.php has XSS via the values parameter.

CPENameOperatorVersion
eventumeq3.4.2
eventumeq1.4
eventumeq1.1
eventumeq2.2
eventumeq2.3
eventumeq3.0.7
eventumeq3.1.7
eventumeq3.1.4
eventumeq3.1.3
eventumeq3.3.3

Name	Operator	Version
eventum	eq	3.4.2
eventum	eq	1.4
eventum	eq	1.1
eventum	eq	2.2
eventum	eq	2.3
eventum	eq	3.0.7
eventum	eq	3.1.7
eventum	eq	3.1.4
eventum	eq	3.1.3
eventum	eq	3.3.3

Rows per page:

1-10 of 641

References

github.com/eventum/eventum/blob/master/CHANGELOG.md

github.com/eventum/eventum/releases/tag/v3.5.2