Lucene search
K

9 matches found

NVD
NVD
added 2018/01/31 6:29 p.m.26 views

CVE-2014-1632

htdocs/setup/index.php in Eventum before 2.3.5 allows remote attackers to inject and execute arbitrary PHP code via the hostname parameter...

9.3CVSS8.4AI score0.10683EPSS
Exploits5References4
CVE
CVE
added 2018/01/31 6:0 p.m.53 views

CVE-2014-1632

CVE-2014-1632 : In Eventum, vulnerable up to version 2.3.4, the installation script/config handling allows remote code execution via the hostname parameter in /config/config.php during setup. The underlying issue is code injection due to insufficient input sanitization, enabling an attacker with ...

9.3CVSS8.2AI score0.10683EPSS
Exploits5References4Affected Software1
Cvelist
Cvelist
added 2018/01/31 6:0 p.m.26 views

CVE-2014-1632

htdocs/setup/index.php in Eventum before 2.3.5 allows remote attackers to inject and execute arbitrary PHP code via the hostname parameter...

8.4AI score0.10683EPSS
Exploits5References4
securityvulns
securityvulns
added 2014/02/03 12:0 a.m.99 views

Multiple Vulnerabilities in Eventum

Advisory ID: HTB23198 Product: Eventum Vendor: Eventum Development Team Vulnerable Versions: 2.3.4 and probably prior Tested Version: 2.3.4 Advisory Publication: January 22, 2014 without technical details Vendor Notification: January 22, 2014 Vendor Patch: January 24, 2014 Public Disclosure:...

9.3CVSS0.2AI score0.10683EPSS
Exploits6
0day.today
0day.today
added 2014/01/29 12:0 a.m.75 views

Eventum 2.3.4 Incorrect Permissions / Code Injection Vulnerabilities

Eventum version 2.3.4 suffers from incorrect default permission and code injection vulnerabilities. Vendor: Eventum Development Team Vulnerable Versions: 2.3.4 and probably prior Tested Version: 2.3.4 Advisory Publication: January 22, 2014 without technical details Vendor Notification: January 22...

5.5CVSS0.4AI score0.10683EPSS
Exploits6
exploitpack
exploitpack
added 2014/01/28 12:0 a.m.98 views

Eventum 2.3.4 - hostname Remote Code Execution

Eventum 2.3.4 - hostname Remote Code Execution Advisory ID: HTB23198 Product: Eventum Vendor: Eventum Development Team Vulnerable Versions: 2.3.4 and probably prior Tested Version: 2.3.4 Advisory Publication: January 22, 2014 without technical details Vendor Notification: January 22, 2014 Vendor...

9.3CVSS8.1AI score0.10683EPSS
Exploits6
Packet Storm
Packet Storm
added 2014/01/28 12:0 a.m.58 views

Eventum 2.3.4 Incorrect Permissions / Code Injection

Advisory ID: HTB23198 Product: Eventum Vendor: Eventum Development Team Vulnerable Versions: 2.3.4 and probably prior Tested Version: 2.3.4 Advisory Publication: January 22, 2014 without technical details Vendor Notification: January 22, 2014 Vendor Patch: January 24, 2014 Public Disclosure:...

5.5CVSS7.8AI score0.10683EPSS
Exploits6
Circl
Circl
added 2014/01/28 12:0 a.m.31 views

CVE-2014-1632

creationtimestamp| type| source ---|---|--- 2014-01-28 00:00:00+00:00| exploited| https://www.exploit-db.com/exploits/39066...

9.3CVSS6.8AI score0.10683EPSS
Exploits5References1
Exploit DB
Exploit DB
added 2014/01/28 12:0 a.m.66 views

Eventum 2.3.4 - 'hostname' Remote Code Execution

Advisory ID: HTB23198 Product: Eventum Vendor: Eventum Development Team Vulnerable Versions: 2.3.4 and probably prior Tested Version: 2.3.4 Advisory Publication: January 22, 2014 without technical details Vendor Notification: January 22, 2014 Vendor Patch: January 24, 2014 Public Disclosure:...

9.3CVSS7.8AI score0.10683EPSS
Exploits6
Rows per page
Query Builder