Angeljudesuarez Event Management System — known CVE vulnerabilities
Every CVE whose affected-product data names Angeljudesuarez Event Management System, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
CVE-2024-44727 — CVSS 9.8 (critical): Sourcecodehero Event Management System1.0 is vulnerable to SQL Injection via the parameter 'username' in /event/admin/login.php.
CVE-2024-44728 — CVSS 6.1 (medium): Sourcecodehero Event Management System 1.0 allows Stored Cross-Site Scripting via parameters Full Name, Address, Email, and contact# in…