Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
webcalendar webcalendar 0.9.34 vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2002-2065
WebCalendar 0.9.34 and previous versions with 'browsing in includes directory' enabled allows remote malicious users to read arbitrary include files with .inc extensions from the web root.
Webcalendar Webcalendar 0.9.31
Webcalendar Webcalendar 0.9.32
Webcalendar Webcalendar 0.9.34
Webcalendar Webcalendar 0.9.33
NA
CVE-2004-1507
CRLF injection vulnerability in login.php in WebCalendar allows remote malicious users to inject CRLF sequences via the return_path parameter and perform HTTP Response Splitting attacks to modify expected HTML content from the server.
Webcalendar Webcalendar 0.9.21
Webcalendar Webcalendar 0.9.22
Webcalendar Webcalendar 0.9.30
Webcalendar Webcalendar 0.9.31
Webcalendar Webcalendar 0.9.38
Webcalendar Webcalendar 0.9.39
Webcalendar Webcalendar 0.9.11
Webcalendar Webcalendar 0.9.23
Webcalendar Webcalendar 0.9.24
Webcalendar Webcalendar 0.9.25
Webcalendar Webcalendar 0.9.32
Webcalendar Webcalendar 0.9.33
Webcalendar Webcalendar 0.9.40
Webcalendar Webcalendar 0.9.41
Webcalendar Webcalendar 0.9.15
Webcalendar Webcalendar 0.9.16
Webcalendar Webcalendar 0.9.26
Webcalendar Webcalendar 0.9.27
Webcalendar Webcalendar 0.9.34
Webcalendar Webcalendar 0.9.35
Webcalendar Webcalendar 0.9.42
Webcalendar Webcalendar 0.9.43
NA
CVE-2004-1508
init.php in WebCalendar allows remote malicious users to execute arbitrary local PHP scripts via the user_inc parameter.
Webcalendar Webcalendar 0.9.11
Webcalendar Webcalendar 0.9.15
Webcalendar Webcalendar 0.9.16
Webcalendar Webcalendar 0.9.19
Webcalendar Webcalendar 0.9.26
Webcalendar Webcalendar 0.9.27
Webcalendar Webcalendar 0.9.34
Webcalendar Webcalendar 0.9.35
Webcalendar Webcalendar 0.9.43
Webcalendar Webcalendar 0.9.44
Webcalendar Webcalendar 0.9.24
Webcalendar Webcalendar 0.9.25
Webcalendar Webcalendar 0.9.32
Webcalendar Webcalendar 0.9.33
Webcalendar Webcalendar 0.9.40
Webcalendar Webcalendar 0.9.41
Webcalendar Webcalendar 0.9.42
Webcalendar Webcalendar 0.9.20
Webcalendar Webcalendar 0.9.21
Webcalendar Webcalendar 0.9.28
Webcalendar Webcalendar 0.9.29
Webcalendar Webcalendar 0.9.36
NA
CVE-2004-1506
Multiple cross-site scripting (XSS) vulnerabilities in WebCalendar allow remote malicious users to inject arbitrary web script via (1) view_entry.php, (2) view_d.php, (3) usersel.php, (4) datesel.php, (5) trailer.php, or (6) styles.php, as demonstrated using img srg tags.
Webcalendar Webcalendar 0.9.19
Webcalendar Webcalendar 0.9.20
Webcalendar Webcalendar 0.9.27
Webcalendar Webcalendar 0.9.28
Webcalendar Webcalendar 0.9.36
Webcalendar Webcalendar 0.9.37
Webcalendar Webcalendar 0.9.44
Webcalendar Webcalendar 0.9.8
Webcalendar Webcalendar 0.9.21
Webcalendar Webcalendar 0.9.22
Webcalendar Webcalendar 0.9.29
Webcalendar Webcalendar 0.9.30
Webcalendar Webcalendar 0.9.38
Webcalendar Webcalendar 0.9.39
Webcalendar Webcalendar 0.9.11
Webcalendar Webcalendar 0.9.23
Webcalendar Webcalendar 0.9.24
Webcalendar Webcalendar 0.9.31
Webcalendar Webcalendar 0.9.32
Webcalendar Webcalendar 0.9.33
Webcalendar Webcalendar 0.9.40
Webcalendar Webcalendar 0.9.41
NA
CVE-2005-2320
WebCalendar prior to 1.0.0 does not properly restrict access to assistant_edit.php, which allows remote malicious users to gain privileges.
Webcalendar Webcalendar 0.9.26
Webcalendar Webcalendar 0.9.27
Webcalendar Webcalendar 0.9.28
Webcalendar Webcalendar 0.9.29
Webcalendar Webcalendar 0.9.42
Webcalendar Webcalendar 0.9.43
Webcalendar Webcalendar 0.9.44
Webcalendar Webcalendar 0.9.45
Webcalendar Webcalendar 0.9.50
Webcalendar Webcalendar 0.9.15
Webcalendar Webcalendar 0.9.16
Webcalendar Webcalendar 0.9.19
Webcalendar Webcalendar 0.9.20
Webcalendar Webcalendar 0.9.34
Webcalendar Webcalendar 0.9.35
Webcalendar Webcalendar 0.9.36
Webcalendar Webcalendar 0.9.37
Webcalendar Webcalendar 0.9.22
Webcalendar Webcalendar 0.9.24
Webcalendar Webcalendar 0.9.31
Webcalendar Webcalendar 0.9.33
Webcalendar Webcalendar 0.9.38
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-23316
SQL injection
type confusion
CVE-2024-20697
CVE-2024-4344
local
CVE-2024-30043
CVE-2024-3821
CVE-2024-5041
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started