CVE-2018-25319 | wende60 MyEvents Addon 2.2.1 on Redaxo GET Request event_add.php myevents_id sql injection (Exploit 44261 / EDB-44261)

A vulnerability labeled as critical has been found in wende60 MyEvents Addon 2.2.1 on Redaxo. This affects an unknown function of the file event_add.php of the component GET Request Handler. The manipulation of the argument myevents_id results in sql injection.

This vulnerability is identified as CVE-2018-25319. The attack can be executed remotely. Additionally, an exploit exists.VulDB Recent EntriesRead More