VYPR

Zenbership

by Zenbership

CVEs (2)

  • CVE-2016-10738HigJan 16, 2019
    risk 0.57cvss 8.8epss 0.01

    Zenbership v107 has CSRF via admin/cp-functions/event-add.php.

  • CVE-2017-9759HigJun 19, 2017
    risk 0.57cvss 8.8epss 0.01

    SQL Injection exists in admin/index.php in Zenbership 1.0.8 via the filters array parameter, exploitable by a privileged account.