A vulnerability was found in SourceCodester Royale Event Management System 1.0. It has been rated as critical. This issue affects some unknown processing of the file /royal_event/userregister.php. The manipulation leads to improper authentication. The attack may be initiated remotely. The identifie...
9.8CVSS
9.4AI Score
0.004EPSS
A vulnerability classified as problematic has been found in SourceCodester Royale Event Management System 1.0. Affected is an unknown function of the file /royal_event/companyprofile.php. The manipulation of the argument companyname/regno/companyaddress/companyemail leads to cross site scripting. I...
6.1CVSS
6AI Score
0.001EPSS
Royal Event Management System v1.0 was discovered to contain a SQL injection vulnerability via the todate parameter.
8.8CVSS
8.9AI Score
0.022EPSS
Event Management System v1.0 was discovered to contain an arbitrary file upload vulnerability via the component /Royal_Event/update_image.php. This vulnerability allows attackers to execute arbitrary code via a crafted PHP file.
7.2CVSS
7.3AI Score
0.001EPSS