Lucene search
K

13 matches found

Prion
Prion
added 2008/10/22 12:11 a.m.15 views

Sql injection

SQL injection vulnerability in viewevent.php in myEvent 1.6 allows remote attackers to execute arbitrary SQL commands via the eventdate parameter...

7.5CVSS9.1AI score0.0101EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2008/10/21 10:0 p.m.17 views

CVE-2008-4650

SQL injection vulnerability in viewevent.php in myEvent 1.6 allows remote attackers to execute arbitrary SQL commands via the eventdate parameter...

8.4AI score0.0101EPSS
Exploits0References4
CVE
CVE
added 2008/10/21 10:0 p.m.46 views

CVE-2008-4650

The CVE-2008-4650 entry describes an SQL injection in the myEvent 1.6 application, specifically in viewevent.php via the eventdate parameter. This allows remote attackers to execute arbitrary SQL commands. The provided connected documents confirm the affected component and the root cause (SQL inj...

7.5CVSS8.4AI score0.0101EPSS
Exploits0References4Affected Software1
seebug.org
seebug.org
added 2008/10/16 12:0 a.m.33 views

myEvent 1.6 (viewevent.php) Remote SQL Injection Vulnerability

No description provided by source. myEvent 1.6 viewevent.php Remote SQL Injection Vulnerability url: http://mywebland.com/ Author: JosS mail: sys-projectathotmaildotcom site: http://spanish-hackers.com team: Spanish Hackers Team - SHT This was written for educational purpose. Use it at your own...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2008/10/16 12:0 a.m.21 views

myevent-sql.txt

myEvent 1.6 viewevent.php Remote SQL Injection Vulnerability url: http://mywebland.com/ Author: JosS mail: sys-projectathotmaildotcom site: http://spanish-hackers.com team: Spanish Hackers Team - SHT This was written for educational purpose. Use it at your own risk. Author will be not responsible...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2008/10/15 12:0 a.m.11 views

myEvent 1.6 - eventdate SQL Injection

myEvent 1.6 - eventdate SQL Injection myEvent 1.6 viewevent.php Remote SQL Injection Vulnerability url: http://mywebland.com/ Author: JosS mail: sys-projectathotmaildotcom site: http://spanish-hackers.com team: Spanish Hackers Team - SHT This was written for educational purpose. Use it at your ow...

0.3AI score
Exploits0
Exploit DB
Exploit DB
added 2008/10/15 12:0 a.m.58 views

myEvent 1.6 - 'eventdate' SQL Injection

myEvent 1.6 viewevent.php Remote SQL Injection Vulnerability url: http://mywebland.com/ Author: JosS mail: sys-projectathotmaildotcom site: http://spanish-hackers.com team: Spanish Hackers Team - SHT This was written for educational purpose. Use it at your own risk. Author will be not responsible...

7.4AI score
Exploits0
NVD
NVD
added 2007/06/22 6:30 p.m.15 views

CVE-2007-3353

PHP remote file inclusion vulnerability in includes/template.php in MyEvent 1.6 allows remote attackers to execute arbitrary PHP code via a URL in the myeventpath parameter. NOTE: a reliable third party disputes this issue, saying "the entire file is a class...

7.5CVSS7.5AI score0.01348EPSS
Exploits0References3
Cvelist
Cvelist
added 2007/06/22 6:0 p.m.20 views

CVE-2007-3353

PHP remote file inclusion vulnerability in includes/template.php in MyEvent 1.6 allows remote attackers to execute arbitrary PHP code via a URL in the myeventpath parameter. NOTE: a reliable third party disputes this issue, saying "the entire file is a class...

7.5AI score0.01348EPSS
Exploits0References3
CVE
CVE
added 2007/06/22 6:0 p.m.68 views

CVE-2007-3353

The CVE-2007-3353 vulnerability affects MyEvent 1.6, specifically in includes/template.php, where a remote file inclusion can occur via the myevent_path parameter to execute arbitrary PHP code. The root cause is an improper handling of the URL parameter, enabling code execution on the server. A t...

7.5CVSS7.5AI score0.01348EPSS
Exploits0References3Affected Software1
NVD
NVD
added 2007/05/30 8:30 p.m.21 views

CVE-2007-0690

myEvent 1.6 allows remote attackers to obtain sensitive information via 1 a Log In action without a password to login.php, or an invalid 2 view or 3 monthno parameter to myevent.php, which reveals the path in various error messages...

5CVSS6.3AI score0.01435EPSS
Exploits0References6
CVE
CVE
added 2007/05/30 8:0 p.m.81 views

CVE-2007-0690

CVE-2007-0690 affects myEvent version 1.6. Remote attackers can cause error messages from myevent.php and login.php to reveal server paths, enabling partial information disclosure. The issue arises when processing parameters view[], monthno[], or during a login action without a password, which tr...

5CVSS6.3AI score0.01435EPSS
Exploits0References6Affected Software1
Cvelist
Cvelist
added 2007/05/30 8:0 p.m.21 views

CVE-2007-0690

myEvent 1.6 allows remote attackers to obtain sensitive information via 1 a Log In action without a password to login.php, or an invalid 2 view or 3 monthno parameter to myevent.php, which reveals the path in various error messages...

6.3AI score0.01435EPSS
Exploits0References6
Rows per page
Query Builder