Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

NVD
NVDadded 2026/05/17 1:16 p.m.5 views

CVE-2018-25319

Redaxo CMS Addon MyEvents 2.2.1 contains an SQL injection vulnerability that allows authenticated attackers to manipulate database queries by injecting SQL code through the myeventsid parameter. Attackers can send GET requests to the eventadd.php page with malicious myeventsid values to extract o...

7.1CVSS0.0001EPSS
Exploits0References3
Cvelist
Cvelistadded 2026/05/17 12:11 p.m.31 views

CVE-2018-25319 Redaxo CMS Addon MyEvents 2.2.1 SQL Injection via event_add.php

Redaxo CMS Addon MyEvents 2.2.1 contains an SQL injection vulnerability that allows authenticated attackers to manipulate database queries by injecting SQL code through the myeventsid parameter. Attackers can send GET requests to the eventadd.php page with malicious myeventsid values to extract o...

7.1CVSS0.0001EPSS
Exploits0References3
EUVD
EUVDadded 2026/05/17 12:11 p.m.7 views

EUVD-2018-21840

Redaxo CMS Addon MyEvents 2.2.1 contains an SQL injection vulnerability that allows authenticated attackers to manipulate database queries by injecting SQL code through the myeventsid parameter. Attackers can send GET requests to the eventadd.php page with malicious myeventsid values to extract o...

7.1CVSS5.9AI score0.0001EPSS
Exploits0References3
CVE
CVEadded 2026/05/17 12:11 p.m.9 views

CVE-2018-25319

Vulnerability summary: Redaxo CMS Addon MyEvents 2.2.1 contains an SQL injection in the event_add.php flow via the myevents_id parameter. The issue can be exploited by authenticated users sending crafted GET requests to the event_add.php endpoint to influence database queries and potentially extr...

7.1CVSS5.9AI score0.0001EPSS
Exploits0References3
Zero Day Initiative
Zero Day Initiativeadded 2026/03/16 12:0 a.m.3 views

(Pwn2Own) QNAP TS-453E nvrlog_event_add msg SQL Injection Remote Code Execution Vulnerability

This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of QNAP TS-453E devices. Although authentication is required to exploit this vulnerability, the existing authentication mechanism can be bypassed. The specific flaw exists within the handling ...

8CVSS6.2AI score0.00149EPSS
Exploits0References1
RedhatCVE
RedhatCVEadded 2026/01/09 11:10 a.m.1 views

CVE-2016-10738

Zenbership v107 has CSRF via admin/cp-functions/event-add.php...

8.8CVSS7AI score0.00177EPSS
Exploits0References1
securityvulns
securityvulnsadded 2011/05/21 12:0 a.m.56 views

HTB22981: Multiple XSS (Cross Site Scripting) vulnerabilities in PHP Calendar Basic

Vulnerability ID: HTB22981 Reference: http://www.htbridge.ch/advisory/multiplexsscrosssitescriptingvulnerabilitiesinphpcalendarbasic.html Product: PHP Calendar Basic Vendor: Kubelabs.com http://www.kubelabs.com/ Vulnerable Version: 2.3 and probably prior versions Vendor Notification: 03 May 2011...

0.3AI score
Exploits0
Packet Storm
Packet Stormadded 2011/05/18 12:0 a.m.17 views

PHP Calendar Basic 2.3 Cross Site Scripting

Vulnerability ID: HTB22981 Reference: http://www.htbridge.ch/advisory/multiplexsscrosssitescriptingvulnerabilitiesinphpcalendarbasic.html Product: PHP Calendar Basic Vendor: Kubelabs.com http://www.kubelabs.com/ Vulnerable Version: 2.3 and probably prior versions Vendor Notification: 03 May 2011...

0.1AI score
Exploits0
Rows per page
Query Builder