Skip to main content

Ebrigade

4 CVEs product

Monthly

CVE-2019-16745 HIGH This Week

eBrigade before 5.0 has evenement_choice.php chxCal SQL Injection. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi PHP Ebrigade
NVD
CVSS 3.1
8.8
EPSS
1.7%
CVE-2019-16744 HIGH This Week

eBrigade before 5.0 has evenements.php cid SQL Injection. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi PHP Ebrigade
NVD
CVSS 3.1
8.8
EPSS
1.7%
CVE-2019-16743 HIGH This Week

eBrigade before 5.0 has evenement_ical.php evenement SQL Injection. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi PHP Ebrigade
NVD
CVSS 3.1
8.8
EPSS
1.7%
CVE-2019-9622 MEDIUM POC This Month

eBrigade through 4.5 allows Arbitrary File Download via ../ directory traversal in the showfile.php file parameter, as demonstrated by reading the user-data/save/backup.sql file. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP Path Traversal Ebrigade
NVD Exploit-DB
CVSS 3.0
4.3
EPSS
4.8%
EPSS 2% CVSS 8.8
HIGH This Week

eBrigade before 5.0 has evenement_choice.php chxCal SQL Injection. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi PHP Ebrigade
NVD
EPSS 2% CVSS 8.8
HIGH This Week

eBrigade before 5.0 has evenements.php cid SQL Injection. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi PHP Ebrigade
NVD
EPSS 2% CVSS 8.8
HIGH This Week

eBrigade before 5.0 has evenement_ical.php evenement SQL Injection. Rated high severity (CVSS 8.8), this vulnerability is remotely exploitable, low attack complexity. No vendor patch available.

SQLi PHP Ebrigade
NVD
EPSS 5% CVSS 4.3
MEDIUM POC This Month

eBrigade through 4.5 allows Arbitrary File Download via ../ directory traversal in the showfile.php file parameter, as demonstrated by reading the user-data/save/backup.sql file. Rated medium severity (CVSS 4.3), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and no vendor patch available.

PHP Path Traversal Ebrigade
NVD Exploit-DB

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy