Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
calendar vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2006-5426
PHP remote file inclusion vulnerability in lib/lcUser.php in LoCal Calendar System 1.1 remote malicious users to execute arbitrary PHP code via a URL in the LIBDIR parameter.
Local Calendar System Local Calendar System 1.1
1 EDB exploit
5.4
CVSSv3
CVE-2023-37970
Auth. (contributor+) Stored Cross-Site Scripting (XSS) vulnerability in Matthew Fries MF Gig Calendar plugin <= 1.2 versions.
Mf Gig Calendar Project Mf Gig Calendar
6.1
CVSSv3
CVE-2021-24510
The MF Gig Calendar WordPress plugin prior to 1.2 does not sanitise and escape the id GET parameter before outputting back in the admin dashboard when editing an Event, leading to a reflected Cross-Site Scripting issue
Mf Gig Calendar Project Mf Gig Calendar
7.2
CVSSv3
CVE-2021-24552
The Simple Events Calendar WordPress plugin up to and including 1.4.0 does not sanitise, validate or escape the event_id POST parameter before using it in a SQL statement when deleting events, leading to an authenticated SQL injection issue
Simple Events Calendar Project Simple Events Calendar
4.8
CVSSv3
CVE-2023-28169
Auth. (admin+) Stored Cross-Site Scripting (XSS) vulnerability in CoreFortress Easy Event calendar plugin <= 1.0 versions.
Easy Event Calendar Project Easy Event Calendar
8.8
CVSSv3
CVE-2023-31093
Cross-Site Request Forgery (CSRF) vulnerability in Chronosly Chronosly Events Calendar plugin <= 2.6.2 versions.
Chronosly-events-calendar Project Chronosly-events-calendar
NA
CVE-2006-0206
Eval injection vulnerability in Light Weight Calendar (LWC) 1.0 (20040909) and previous versions allows remote malicious users to execute arbitrary PHP code via the date parameter in cal.php, which is included by index.php.
Light Weight Calendar Light Weight Calendar 1.0
1 EDB exploit
NA
CVE-2009-1219
Sun Calendar Express Web Server in Sun ONE Calendar Server 6.0 and Sun Java System Calendar Server 6 2004Q2 up to and including 6.3-7.01 allows remote malicious users to cause a denial of service (daemon crash) via multiple requests to the default URI with alphabetic characters i...
Sun One Calendar Server 6.0
Sun Java System Calendar Server 6
Sun Java System Calendar Server 6.3
1 EDB exploit
NA
CVE-2009-1218
Multiple cross-site scripting (XSS) vulnerabilities in Sun Calendar Express Web Server in Sun ONE Calendar Server 6.0 and Sun Java System Calendar Server 6 2004Q2 up to and including 6.3-7.01 allow remote malicious users to inject arbitrary web script or HTML via (1) the fmt-out ...
Sun One Calendar Server 6.0
Sun Java System Calendar Server 6
Sun Java System Calendar Server 6.3
1 EDB exploit
NA
CVE-2008-2749
Unspecified vulnerability in cshttpd in Sun Java System Calendar Server 6 and 6.3, and Sun ONE Calendar Server 6.0, when access logging (aka service.http.commandlog.all) is enabled, allows remote malicious users to cause a denial of service (daemon crash) via unspecified vectors.
Sun Java System Calendar Server 6
Sun One Calendar Server 6.0
Sun Java System Calendar Server 6.3
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-37884
CVE-2024-6003
remote
brute force
information disclosure
CVE-2024-27801
CVE-2024-30078
CVE-2024-31870
CVE-2024-6042
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »