29 matches found
Hi.Events SQL注入漏洞
Hi.Events is an open-source event ticketing and management platform developed by Hi.Events. Versions of Hi.Events from 0.8.0-beta.1 to 1.7.1-beta contained a SQL injection vulnerability. This vulnerability occurred because multiple repository classes directly passed the sortby query parameter...
EUVD-2006-5024
Malware in sbrugna...
EUVD-2008-5738
Malware in sbrugna...
EUVD-2022-44175
Malicious code in bioql PyPI...
EUVD-2025-0121
Malicious code in bioql PyPI...
CVE-2022-40925
Zoo Management System v1.0 has an arbitrary file upload vulnerability in the picture upload point of the "saveevent" file of the "Events" module in the background management system...
CVE-2006-5039
Unspecified vulnerability in Events 1.3 beta module comevents for Joomla! has unspecified impact and attack vectors...
BIT-DOLIBARR-2024-55227
A cross-site scripting XSS vulnerability in the Events/Agenda module of Dolibarr v21.0.0-beta allows attackers to execute arbitrary web scripts or HTMl via a crafted payload injected into the Title parameter...
GHSA-2V3R-GVQ5-QQGH Dolibarr Cross-site Scripting vulnerability
A cross-site scripting XSS vulnerability in the Events/Agenda module of Dolibarr v21.0.0-beta allows attackers to execute arbitrary web scripts or HTMl via a crafted payload injected into the Title parameter...
Dolibarr Cross-site Scripting vulnerability
A cross-site scripting XSS vulnerability in the Events/Agenda module of Dolibarr v21.0.0-beta allows attackers to execute arbitrary web scripts or HTMl via a crafted payload injected into the Title parameter...
CVE-2024-55227
A cross-site scripting XSS vulnerability in the Events/Agenda module of Dolibarr v21.0.0-beta allows attackers to execute arbitrary web scripts or HTMl via a crafted payload injected into the Title parameter...
CVE-2024-55227
A cross-site scripting XSS vulnerability in the Events/Agenda module of Dolibarr v21.0.0-beta allows attackers to execute arbitrary web scripts or HTMl via a crafted payload injected into the Title parameter...
CVE-2024-55227
A cross-site scripting XSS vulnerability in the Events/Agenda module of Dolibarr v21.0.0-beta allows attackers to execute arbitrary web scripts or HTMl via a crafted payload injected into the Title parameter...
PT-2025-3105 · Dolibarr · Dolibarr
Name of the Vulnerable Software and Affected Versions: Dolibarr version 21.0.0-beta Description: A cross-site scripting XSS issue in the Events/Agenda module allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Title parameter. This enables attackers t...
CVE-2024-55227
CVE-2024-55227 affects Dolibarr 21.0.0-beta in the Events/Agenda module. The vulnerability is a cross-site scripting (XSS) flaw in the Title parameter that can lead to arbitrary web-script execution. The NVD/CVSS details indicate a critical impact (CVSS v3.1: AV:N/AC:L/PR:L/UI:R/S:C/C:H/I:H/A:H, ...
CVE-2023-40224
MISP 2.4.174 allows XSS in app/View/Events/index.ctp...
Zoo Management System save_event Arbitrary File Upload Vulnerability
Zoo Management System is a zoo management system. It provides an online and automated platform for zoo organizations to manage their daily records. An arbitrary file upload vulnerability exists in Zoo Management System v1.0, which arises from a lack of validation of uploaded files at the image...
CVE-2022-40925
Zoo Management System v1.0 has an arbitrary file upload vulnerability in the picture upload point of the "saveevent" file of the "Events" module in the background management system...
CVE-2022-40925
Zoo Management System v1.0 has an arbitrary file upload vulnerability in the picture upload point of the "saveevent" file of the "Events" module in the background management system...
CVE-2022-40925
CVE-2022-40925 affects Zoo Management System v1.0. The vulnerability is an arbitrary file upload in the picture upload point of the save_event file within the Events module of the backend management system, caused by a lack of validation for uploaded files. This can enable remote code execution a...