Lucene search
K
Event Management System ProjectEvent Management System

4 matches found

CVE
CVE
added 2022/05/05 4:6 p.m.92 views

CVE-2022-28080

Product: Royal Event Management System v1.0 (SourceCodester PHP project). Vulnerability: SQL injection via the todate parameter in /royal_event/btndates_report.php (authenticated context per exploit details). Root cause: Lack of input validation/unsafe SQL construction allowing injection. Impact ...

8.8CVSS8.9AI score0.57317EPSS
CVE
CVE
added 2023/01/07 9:34 p.m.66 views

CVE-2022-1102

SourceCodester Royale Event Management System 1.0 has a cross-site scripting vulnerability in /royal_event/companyprofile.php. The issue arises from manipulation of the parameters companyname, regno, companyaddress, or companyemail, leading to XSS. Exploitation can be remote. Multiple references ...

6.1CVSS5.1AI score0.00657EPSS
Web
CVE
CVE
added 2023/01/07 9:33 p.m.65 views

CVE-2022-1101

CVE-2022-1101 affects SourceCodester Royale Event Management System 1.0. The vulnerability resides in the processing of /royal_event/userregister.php, causing improper authentication that could be exploited remotely. Multiple connected sources confirm the issue exists with attack vector over the ...

9.8CVSS7.8AI score0.00995EPSS
CVE
CVE
added 2022/09/15 12:39 a.m.43 views

CVE-2022-38323

CVE-2022-38323 affects Event Management System v1.0. The vulnerability is an arbitrary file upload in the /Royal_Event/update_image.php component, enabling remote code execution via a crafted PHP file. Several sources (NVD/Red Hat/others) confirm the issue and its high severity (CVSS v3.1: HIGH, ...

7.2CVSS7.3AI score0.00991EPSS