Eventum before 2.3.5 allows remote attackers to reinstall the application via direct request to /setup/index.php. Date published : 2018-01-31 http://www.securit