Vulnerabilities (CVE)

Filtered by vendor Ebrigade Subscribe
Total 4 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2019-16743 1 Ebrigade 1 Ebrigade 2024-02-28 6.5 MEDIUM 8.8 HIGH
eBrigade before 5.0 has evenement_ical.php evenement SQL Injection.
CVE-2019-16744 1 Ebrigade 1 Ebrigade 2024-02-28 6.5 MEDIUM 8.8 HIGH
eBrigade before 5.0 has evenements.php cid SQL Injection.
CVE-2019-16745 1 Ebrigade 1 Ebrigade 2024-02-28 6.5 MEDIUM 8.8 HIGH
eBrigade before 5.0 has evenement_choice.php chxCal SQL Injection.
CVE-2019-9622 1 Ebrigade 1 Ebrigade 2024-02-28 4.0 MEDIUM 4.3 MEDIUM
eBrigade through 4.5 allows Arbitrary File Download via ../ directory traversal in the showfile.php file parameter, as demonstrated by reading the user-data/save/backup.sql file.