Vulnerabilities > Vfairs > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-05-26 | CVE-2020-26677 | SQL Injection vulnerability in Vfairs 3.3 Any user logged in to a vFairs 3.3 virtual conference or event can perform SQL injection with a malicious query to the API. | 8.8 |
| 2021-05-26 | CVE-2020-26678 | Unrestricted Upload of File with Dangerous Type vulnerability in Vfairs 3.3 vFairs 3.3 is affected by Remote Code Execution. | 8.8 |