| Max CVSS | 9.3 | Min CVSS | 5.0 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2014-1632 | 9.3 |
htdocs/setup/index.php in Eventum before 2.3.5 allows remote attackers to inject and execute arbitrary PHP code via the hostname parameter.
|
26-04-2019 - 15:06 | 31-01-2018 - 18:29 | |
| CVE-2014-1631 | 5.0 |
Eventum before 2.3.5 allows remote attackers to reinstall the application via direct request to /setup/index.php.
|
26-04-2019 - 15:06 | 31-01-2018 - 18:29 |