Export CSV

Products

1 vendor
VendorProductsCVEsKEVAvg EPSSWorst Severity
12017.2%HIGH

Related CVEs

2
CVE IDDescriptionSeverityCVSSKEVEPSSPublished
CVE-2025-40639A SQL injection vulnerability has been found in Eventobot. This vulnerability allows an attacker to retrieve, create, update and delete databases through the 'promo_send' parameter in the '/assets/php/calculate_discount.php'.HIGH8.723.8%Mar 9, 2026
CVE-2025-40638A reflected Cross-Site Scripting (XSS) vulnerability has been found in Eventobot. This vulnerability allows an attacker to execute JavaScript code in the victim's browser by sending him/her a malicious URL using the 'name' parameter in '/search-results'. This vulnerability can be exploited to steal sensitive user data, such as session cookies, or to perform actions on behalf of the user.MEDIUM5.110.5%Mar 9, 2026