Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
webcalendar vulnerabilities and exploits
(subscribe to this query)
760
VMScore
CVE-2012-1495
install/index.php in WebCalendar prior to 1.2.5 allows remote malicious users to execute arbitrary code via the form_single_user_login parameter.
Webcalendar Project Webcalendar
2 EDB exploits
1 Github repository
755
VMScore
CVE-2008-2836
PHP remote file inclusion vulnerability in send_reminders.php in WebCalendar 1.0.4 allows remote malicious users to execute arbitrary PHP code via a URL in the includedir parameter and a 0 value for the noSet parameter, a different vector than CVE-2007-1483.
K5n Webcalendar 1.0.4
1 EDB exploit
755
VMScore
CVE-2008-1954
SQL injection vulnerability in one_day.php in Web Calendar Pro 4.1 and previous versions allows remote malicious users to execute arbitrary SQL commands via the user_id parameter.
Webcalendar Web Calendar Pro 4.0
Webcalendar Web Calendar Pro
1 EDB exploit
755
VMScore
CVE-2007-1483
Multiple PHP remote file inclusion vulnerabilities in WebCalendar 0.9.45 allow remote malicious users to execute arbitrary PHP code via a URL in the includedir parameter to (1) login.php, (2) get_reminders.php, or (3) get_events.php.
K5n Webcalendar 0.9.45
1 EDB exploit
668
VMScore
CVE-2012-5385
install/index.php in Craig Knudsen WebCalendar prior to 1.2.5 allows remote malicious users to modify settings.php and possibly execute arbitrary code via vectors related to the user theme preference.
Webcalendar Project Webcalendar 1.2.2
Webcalendar Project Webcalendar 1.2.0
Webcalendar Project Webcalendar 1.1.1
Webcalendar Project Webcalendar 1.0
Webcalendar Project Webcalendar 1.2.4
Webcalendar Project Webcalendar 1.2.3
Webcalendar Project Webcalendar 1.1.6
Webcalendar Project Webcalendar 1.1.5
Webcalendar Project Webcalendar 1.1.4
Webcalendar Project Webcalendar 1.1.3
Webcalendar Project Webcalendar 1.2.1
Webcalendar Project Webcalendar 1.2
Webcalendar Project Webcalendar 1.1.2
668
VMScore
CVE-2007-1343
includes/functions.php in Craig Knudsen WebCalendar prior to 1.0.5 does not protect the noSet variable from external modification, which allows remote malicious users to set arbitrary global variables via a URL with modified values in the noSet parameter, which leads to resultant...
Webcalendar Webcalendar 1.0.2
Webcalendar Webcalendar 1.0.3
Webcalendar Webcalendar 1.0.0
Webcalendar Webcalendar 1.0.1
Webcalendar Webcalendar 1.0.4
668
VMScore
CVE-2005-3984
SQL injection vulnerability in WebCalendar 1.0.1 allows remote malicious users to execute arbitrary SQL commands via the time_range parameter to edit_report_handler.php. NOTE: the startid/activity_log.php vector is already covered by CVE-2005-3949.
Webcalendar Webcalendar 1.0.1
668
VMScore
CVE-2005-3949
Multiple SQL injection vulnerabilities in WebCalendar 1.0.1 allow remote malicious users to execute arbitrary SQL commands via the (1) startid parameter to activity_log.php, (2) startid parameter to admin_handler.php, (3) template parameter to edit_template.php, and (4) multiple ...
Webcalendar Webcalendar 1.0.1
668
VMScore
CVE-2005-2717
PHP remote file inclusion vulnerability in WebCalendar prior to 1.0.1 allows remote malicious users to execute arbitrary PHP code when opening settings.php, possibly via send_reminders.php or other scripts.
Webcalendar Webcalendar 1.0.0
668
VMScore
CVE-2005-2320
WebCalendar prior to 1.0.0 does not properly restrict access to assistant_edit.php, which allows remote malicious users to gain privileges.
Webcalendar Webcalendar 0.9.26
Webcalendar Webcalendar 0.9.27
Webcalendar Webcalendar 0.9.28
Webcalendar Webcalendar 0.9.29
Webcalendar Webcalendar 0.9.42
Webcalendar Webcalendar 0.9.43
Webcalendar Webcalendar 0.9.44
Webcalendar Webcalendar 0.9.45
Webcalendar Webcalendar 0.9.50
Webcalendar Webcalendar 0.9.15
Webcalendar Webcalendar 0.9.16
Webcalendar Webcalendar 0.9.19
Webcalendar Webcalendar 0.9.20
Webcalendar Webcalendar 0.9.34
Webcalendar Webcalendar 0.9.35
Webcalendar Webcalendar 0.9.36
Webcalendar Webcalendar 0.9.37
Webcalendar Webcalendar 0.9.22
Webcalendar Webcalendar 0.9.24
Webcalendar Webcalendar 0.9.31
Webcalendar Webcalendar 0.9.33
Webcalendar Webcalendar 0.9.38
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
inject
CVE-2024-34001
CVE-2024-37018
LFI
CVE-2024-1275
CVE-2024-1086
CSRF
CVE-2024-31030
CVE-2024-24919
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
NEXT »