Title: Eventy CMS v1.8 Plus-Multiple Web Vulnerablities affected version: 8.3 program Introduction: ================= Publish Your Events In Online Calendar. eventy Is Beautiful And Easy To Use Web Based Event Calendar SoftwarePublish events like parties, courses, meetings, conferences, workshops, and more in easy and user-friendly way. eventy Plus adds features like mailing lists, multi-administrator interface, switchable weekly/monthly view, event categories, and rich text editor. use Eventy or Eventy Plus for your company website, freelancer's blog, club site, online school, or to show your consulting availability. eventy uses Ajax and runs on web hostswith PHP and MySQL. (For details, see the official homepage: http://calendarscripts.info/event-calendar-software.html ) Defect Summary: ========== Eventy CMS v1.8 Plus contains multiple defects for technical analysis: ======= a SQL Injection vulnerability is detected in the Eventy CMS v1.8 Plus, web based event calendar software. the vulnerability allows an attacker (remote) or local low privileged user account to execute a SQL commands on theaffected application dbms. the SQL injection vulnerability is located in eventy. php file with the bound vulnerableevent_id par Ameter. successful exploitation of the vulnerability results in dbms & application compromise. exploitation requires no user interaction & without privileged user account. defect file: [+] eventy. php defect parameter: [+] event_id 1.2A persistent input validation vulnerability is detected in the Eventy CMS v1.8 Plus, web based event calendar software. the bug allows remote attackers to implement/inject malicious scrip T code on the application side (persistent ). the persistent vulnerabilities is located in the add Event module bound vulnerable Event Title and Event Locationparameters. successful exploitation of the vulnerability can lead to session hijacking (manager/admin) or stable (persistent) context manipulation. exploitation requires low user inter action & privileged web application user account. defect module: [+] Add Event defect parameter: [+] Event Title-Event Location 1.3A non-persistent cross site scripting vulnerability is detected in the Eventy CMS v1.8 Plus, web based event calendar software. the vulnerability allows remote attackers to hijack website customer, moderator or admin sessions with medium or high requireduser inter action or local low privileged user account. the vulnerability is located in th E eventy. php page the bound vulnerable selyearand selmonth parameter. successful exploitation of the vulnerability result in account steal, client site phishing or client-sidecontent request manipulation. defect file: [+] eventy. php defect parameter: [+] selyear-selmonth test proof: ==================== 1.1The SQL injection vulnerability can be exploited by remote attackers without privileged application user accounr and wit Houtrequired user inter action. for demonstration or reproduce... poC: