Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
calendar vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2008-2749
Unspecified vulnerability in cshttpd in Sun Java System Calendar Server 6 and 6.3, and Sun ONE Calendar Server 6.0, when access logging (aka service.http.commandlog.all) is enabled, allows remote malicious users to cause a denial of service (daemon crash) via unspecified vectors.
Sun Java System Calendar Server 6.3
Sun Java System Calendar Server 6
Sun One Calendar Server 6.0
NA
CVE-2009-3157
Cross-site scripting (XSS) vulnerability in the Calendar module 6.x prior to 6.x-2.2 for Drupal allows remote authenticated users, with "create new content types" privileges, to inject arbitrary web script or HTML via the title of a content type.
Karen Stevenson Calendar 6.x-2.0
Karen Stevenson Calendar 6.x-2.1
Karen Stevenson Calendar 6.x-2.x-dev
NA
CVE-2008-1954
SQL injection vulnerability in one_day.php in Web Calendar Pro 4.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the user_id parameter.
Webcalendar Web Calendar Pro 4.0
Webcalendar Web Calendar Pro
1 EDB exploit
9.8
CVSSv3
CVE-2017-17616
Event Search Script 1.0 has SQL Injection via the /event-list city parameter.
Event Calendar Category Script Project Event Calendar Category Script 1.0
1 EDB exploit
NA
CVE-2006-6792
SQL injection vulnerability in calendar_detail.asp in Calendar MX BASIC 1.0.2 and previous versions allows remote malicious users to execute arbitrary SQL commands via the ID parameter. NOTE: The provenance of this information is unknown; the details are obtained solely from thir...
Mxmania Calendar Mx Basic 1.0.2
Mxmania Calendar Mx Basic 1.0.1
1 EDB exploit
NA
CVE-2005-4009
Multiple SQL injection vulnerabilities in PHP Lite Calendar Express 2.2 and previous versions allow remote malicious users to execute arbitrary SQL commands via the (1) cid and (2) catid parameters to (a) day.php, (b) week.php, (c) month.php, and (d) year.php.
Php Lite Calendar Express 2.2
Php Lite Calendar Express 2.0
8.8
CVSSv3
CVE-2023-0675
A vulnerability, which was classified as critical, was found in Calendar Event Management System 2.3.0. This affects an unknown part. The manipulation of the argument start/end leads to sql injection. It is possible to initiate the attack remotely. The exploit has been disclosed ...
Calendar Event Management System Project Calendar Event Management System 2.3.0
9.8
CVSSv3
CVE-2023-0663
A vulnerability was found in Calendar Event Management System 2.3.0. It has been rated as critical. This issue affects some unknown processing of the component Login Page. The manipulation of the argument name/pwd leads to sql injection. The attack may be initiated remotely. The ...
Calendar Event Management System Project Calendar Event Management System 2.3.0
6.1
CVSSv3
CVE-2021-42078
PHP Event Calendar through 2021-11-04 allows persistent cross-site scripting (XSS), as demonstrated by the /server/ajax/events_manager.php title parameter. This can be exploited by an adversary in multiple ways, e.g., to perform actions on the page in the context of other users, ...
Php Event Calendar Project Php Event Calendar 2021-11-04
NA
CVE-2014-8586
SQL injection vulnerability in the CP Multi View Event Calendar plugin 1.01 for WordPress allows remote malicious users to execute arbitrary SQL commands via the calid parameter.
Cp Multi View Event Calendar Project Cp Multi View Event Calendar 1.0.1
1 EDB exploit
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-29895
blind SQL injection
CVE-2024-5064
CVE-2023-52677
CVE-2023-52682
CVE-2024-30051
CVE-2024-35849
remote attackers
remote
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
2
3
4
5
6
7
8
9
10
NEXT »