cleantalk
Vulnerabilities and Security Researches

EKC Tournament Manager, CVE-2024-49674

CVE, Research URL

CVE-2024-49674

Home page URL

Security reports for EKC Tournament Manager

Application

EKC Tournament Manager

Published on
Oct 31, 2024
Research Description
Cross-Site Request Forgery (CSRF) vulnerability in Lukas Huser EKC Tournament Manager allows Upload a Web Shell to a Web Server.This issue affects EKC Tournament Manager: from n/a through 2.2.1.
Affected versions
Min -, max 2.2.2.
Status
vulnerable
Previous vulnerability researches
EKC Tournament Manager (CVE-2024-49674) , Oct 25, 2024
EKC Tournament Manager (CVE-2024-9709) , May 19, 2025
EKC Tournament Manager (CVE-2024-9711) , May 19, 2025
EKC Tournament Manager (CVE-2024-9765) , May 19, 2025
New vulnerability
Formality (CVE-2025-3858) , May 20, 2025
PowerPress Podcasting plugin by Blubrry (CVE-2024-9227) , May 19, 2025
Free Booking Plugin for Hotels, Restaurant and Car Rental – eaSYNC (CVE-2024-9450) , May 19, 2025
PWA for WP & AMP (CVE-2024-7759) , May 19, 2025
Badgearoo (CVE-2025-1033) , May 19, 2025