Vulnerabilities > Ebrigade

DATE CVE VULNERABILITY TITLE RISK
2019-09-30 CVE-2019-16745 SQL Injection vulnerability in Ebrigade
eBrigade before 5.0 has evenement_choice.php chxCal SQL Injection.
network
low complexity
ebrigade CWE-89
6.5
6.5
2019-09-30 CVE-2019-16744 SQL Injection vulnerability in Ebrigade
eBrigade before 5.0 has evenements.php cid SQL Injection.
network
low complexity
ebrigade CWE-89
6.5
6.5
2019-09-30 CVE-2019-16743 SQL Injection vulnerability in Ebrigade
eBrigade before 5.0 has evenement_ical.php evenement SQL Injection.
network
low complexity
ebrigade CWE-89
6.5
6.5
2019-03-07 CVE-2019-9622 Path Traversal vulnerability in Ebrigade
eBrigade through 4.5 allows Arbitrary File Download via ../ directory traversal in the showfile.php file parameter, as demonstrated by reading the user-data/save/backup.sql file.
network
low complexity
ebrigade CWE-22
4.0
4.0