4 matches found
Sql injection
SQL Injection exists in Event Manager 1.0 via the event.php id parameter or the page.php slug parameter...
CVE-2018-6576
SQL Injection exists in Event Manager 1.0 via the event.php id parameter or the page.php slug parameter...
CVE-2018-6576
Event Manager 1.0 (PHP-based script) is affected by a SQL injection vulnerability in the parameters: event.php?id and page.php?slug. The issue is caused by unsanitized user input that allows injection of SQL commands. Affected component is the Event Manager 1.0 application; exploitation is refere...
Event Manager 1.0 - SQL Injection
Exploit Title: Event Manager PHP Script 1.0 - SQL Injection Dork: N/A Date: 01.02.2018 Vendor Homepage: http://ezcode.pt/ Software Link: https://codecanyon.net/item/eventmanager-php-script-admin-panel/21280741 Version: 1.0 Category: Webapps Tested on: WiN7x64/KaLiLinuXx64 CVE: N/A Exploit Author:...