5 matches found
CVE-2026-8690
The CVE describes an authorization bypass in the RentMy Real-Time Rental Management Plugin for WordPress, affecting all versions up to 4.0.4.1. The root cause is improper verification of a user’s authorization to perform actions, enabling unauthenticated attackers to read, create, update, and del...
EUVD-2015-7264
Malware in sbrugna...
Sql injection
JEvents Joomla Component before 3.4.0 RC6 has SQL Injection via evid in a Manage Events action...
CVE-2015-7340
The CVE-2015-7340 entry concerns the JEvents Joomla Component prior to version 3.4.0 RC6, which is reported to be vulnerable to SQL Injection via the evid parameter in the Manage Events action. The vulnerability stems from an input vector in the Manage Events workflow that allows an attacker to i...
CVE-2015-7340
JEvents Joomla Component before 3.4.0 RC6 has SQL Injection via evid in a Manage Events action...