Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
php-calendar php-calendar vulnerabilities and exploits
(subscribe to this query)
6.1
CVSSv3
CVE-2022-4455
A vulnerability, which was classified as problematic, was found in sproctor php-calendar. This affects an unknown part of the file index.php. The manipulation of the argument $_SERVER['PHP_SELF'] leads to cross site scripting. It is possible to initiate the attack remot...
Php-calendar Php-calendar
6.1
CVSSv3
CVE-2017-6485
A Cross-Site Scripting (XSS) issue exists in php-calendar prior to 2017-03-03. The vulnerability exists due to insufficient filtration of user-supplied data (errorMsg) passed to the "php-calendar-master/error.php" URL. An attacker could execute arbitrary HTML and script...
Php-calendar Php-calendar
NA
CVE-2013-1955
Multiple cross-site scripting (XSS) vulnerabilities in (1) index.php and (2) datePicker.php in Easy PHP Calendar 6.x and 7.x prior to 7.0.13 allow remote malicious users to inject arbitrary web script or HTML via unspecified vectors.
Nashtech Easy Php Calendar 7.0.00
Nashtech Easy Php Calendar 7.0.01
Nashtech Easy Php Calendar 7.0.02
Nashtech Easy Php Calendar 7.0.03
Nashtech Easy Php Calendar 7.0.05
Nashtech Easy Php Calendar 7.0.07
Nashtech Easy Php Calendar
Nashtech Easy Php Calendar 7.0.08
Nashtech Easy Php Calendar 7.0.09
Nashtech Easy Php Calendar 7.0.10
Nashtech Easy Php Calendar 7.0.11
Nashtech Easy Php Calendar 7.0.04
Nashtech Easy Php Calendar 7.0.06
Nashtech Easy Php Calendar 6.0
NA
CVE-2010-2041
Multiple cross-site scripting (XSS) vulnerabilities in index.php in PHP-Calendar prior to 2.0 Beta7 allow remote malicious users to inject arbitrary web script or HTML via the (1) description and (2) lastaction parameters.
Php-calendar Php-calendar 0.9.1
Php-calendar Php-calendar 0.3
Php-calendar Php-calendar 0.2
Php-calendar Php-calendar 2.0
Php-calendar Php-calendar
Php-calendar Php-calendar 0.6
Php-calendar Php-calendar 0.7
Php-calendar Php-calendar 1.1
Php-calendar Php-calendar 0.8
Php-calendar Php-calendar 0.9
Php-calendar Php-calendar 0.10
Php-calendar Php-calendar 0.1
Php-calendar Php-calendar 0.4
Php-calendar Php-calendar 0.5
NA
CVE-2009-3702
Multiple absolute path traversal vulnerabilities in PHP-Calendar 1.1 allow remote malicious users to include and execute arbitrary local files via a full pathname in the configfile parameter to (1) update08.php or (2) update10.php. NOTE: in some environments, this can be leverage...
Php-calendar Php-calendar 1.1
2 EDB exploits
NA
CVE-2008-7018
Cross-site scripting (XSS) vulnerability in NashTech Easy PHP Calendar 6.3.25 allows remote malicious users to inject arbitrary web script or HTML via the Details field (descr parameter) in an Add New Event action in an unspecified request as generated by an add action in index.p...
Nashtech Easy Php Calendar 6.3.25
NA
CVE-2005-1397
SQL injection vulnerability in search.php for PHP-Calendar prior to 0.10.3 allows remote malicious users to execute arbitrary SQL commands via unknown vectors.
Php-calendar Php-calendar 0.10
Php-calendar Php-calendar 0.2
Php-calendar Php-calendar 0.9
Php-calendar Php-calendar 0.9.1
Php-calendar Php-calendar 0.5
Php-calendar Php-calendar 0.6
Php-calendar Php-calendar 0.3
Php-calendar Php-calendar 0.4
Php-calendar Php-calendar 0.1
Php-calendar Php-calendar 0.7
Php-calendar Php-calendar 0.8
NA
CVE-2004-1423
Multiple PHP remote file inclusion vulnerabilities in Sean Proctor PHP-Calendar prior to 0.10.1, as used in Commonwealth of Massachusetts Virtual Law Office (VLO) and other products, allow remote malicious users to execute arbitrary PHP code via a URL in the phpc_root_path parame...
Php-calendar Php-calendar 0.8
Php-calendar Php-calendar 0.9
Php-calendar Php-calendar 0.1
Php-calendar Php-calendar 0.2
Php-calendar Php-calendar 0.9.1
Php-calendar Php-calendar
Php-calendar Php-calendar 0.5
Php-calendar Php-calendar 0.6
Php-calendar Php-calendar 0.7
Php-calendar Php-calendar 0.3
Php-calendar Php-calendar 0.4
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2023-49223
CVE-2024-0044
information disclosure
CVE-2024-35753
HTML injection
CVE-2024-21306
CVE-2024-35733
SQL injection
CVE-2024-35732
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started