Filtered by vendor Ebrigade
Subscribe
Total
4 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2019-16743 | 1 Ebrigade | 1 Ebrigade | 2024-02-28 | 6.5 MEDIUM | 8.8 HIGH |
eBrigade before 5.0 has evenement_ical.php evenement SQL Injection. | |||||
CVE-2019-16744 | 1 Ebrigade | 1 Ebrigade | 2024-02-28 | 6.5 MEDIUM | 8.8 HIGH |
eBrigade before 5.0 has evenements.php cid SQL Injection. | |||||
CVE-2019-16745 | 1 Ebrigade | 1 Ebrigade | 2024-02-28 | 6.5 MEDIUM | 8.8 HIGH |
eBrigade before 5.0 has evenement_choice.php chxCal SQL Injection. | |||||
CVE-2019-9622 | 1 Ebrigade | 1 Ebrigade | 2024-02-28 | 4.0 MEDIUM | 4.3 MEDIUM |
eBrigade through 4.5 allows Arbitrary File Download via ../ directory traversal in the showfile.php file parameter, as demonstrated by reading the user-data/save/backup.sql file. |