CVE-2018-12627

2019-07-1012:15:10

Google

osv.dev

5.8 Medium

AI Score

Confidence

High

0.001 Low

EPSS

Percentile

26.7%

JSON

An issue was discovered in Eventum 3.5.0. /htdocs/list.php has XSS via the show_notification_list_issues or show_authorized_issues parameter.

CPENameOperatorVersion
eventumeq3.4.2
eventumeq1.4
eventumeq1.1
eventumeq2.2
eventumeq2.3
eventumeq3.0.7
eventumeq3.1.7
eventumeq3.1.4
eventumeq3.1.3
eventumeq3.3.3

Name	Operator	Version
eventum	eq	3.4.2
eventum	eq	1.4
eventum	eq	1.1
eventum	eq	2.2
eventum	eq	2.3
eventum	eq	3.0.7
eventum	eq	3.1.7
eventum	eq	3.1.4
eventum	eq	3.1.3
eventum	eq	3.3.3

Rows per page:

1-10 of 641

References

github.com/eventum/eventum/blob/master/CHANGELOG.md

github.com/eventum/eventum/releases/tag/v3.5.2