173 matches found
CVE-2003-0738
The calendar module in phpWebSite 0.9.x and earlier allows remote attackers to cause a denial of service crash via a long year parameter...
CVE-2003-0737
CVE-2003-0737 : The calendar module of phpWebSite 0.9.x and earlier allows remote attackers to obtain the full pathname of phpWebSite by triggering an error from localtime() in TimeZone.php (Pear library) via an invalid year. The issue is web-accessible (network vector) with no authentication, an...
CVE-2003-0735
CVE-2003-0735 affects phpWebSite 0.9.x and earlier, specifically the Calendar module. The root cause is insufficient input validation for calendar events, allowing SQL injection via user-controlled input (e.g., cal_template) and potentially enabling execution of arbitrary SQL with the PHPWebSite ...
CVE-2003-0735
SQL injection vulnerability in the Calendar module of phpWebSite 0.9.x and earlier allows remote attackers to execute arbitrary SQL queries, as demonstrated using the year parameter...
PHP Website 0.7.30.8.20.8.30.9.2 Calendar Module - SQL Injection
PHP Website 0.7.30.8.20.8.30.9.2 Calendar Module - SQL Injection source: https://www.securityfocus.com/bid/8390/info Multiple SQL injection vulnerabilities have been reported in PHP Website. These issue may be exploited by sending a malicious request to the calendar script. Possible consequencs o...
phpWebSite 0.7.30.8.20.8.30.9.2 Calendar Module - day Cross-Site Scripting
phpWebSite 0.7.30.8.20.8.30.9.2 Calendar Module - day Cross-Site Scripting source: https://www.securityfocus.com/bid/8393/info PHP Website is a web site content management system that allows for easy maintainance and administration of interactive community-driven websites. Cross-site...
phpWebSite 0.7.30.8.20.8.30.9.2 pagemaster Module - PAGE_id Cross-Site Scripting
phpWebSite 0.7.30.8.20.8.30.9.2 pagemaster Module - PAGEid Cross-Site Scripting source: https://www.securityfocus.com/bid/8393/info PHP Website is a web site content management system that allows for easy maintainance and administration of interactive community-driven websites. Cross-site...
phpWebSite 0.7.30.8.20.8.30.9.2 earch Module - PDA_limit Cross-Site Scripting
phpWebSite 0.7.30.8.20.8.30.9.2 earch Module - PDAlimit Cross-Site Scripting source: https://www.securityfocus.com/bid/8393/info PHP Website is a web site content management system that allows for easy maintainance and administration of interactive community-driven websites. Cross-site...
phpWebSite 0.7.3/0.8.2/0.8.3/0.9.2 earch Module - 'PDA_limit' Cross-Site Scripting
source: https://www.securityfocus.com/bid/8393/info PHP Website is a web site content management system that allows for easy maintainance and administration of interactive community-driven websites. Cross-site vulnerabilities have been reported in the Calendar, PageMaster, Search and Fatcat modul...
PHP Website 0.7.3/0.8.2/0.8.3/0.9.2 Calendar Module - SQL Injection
source: https://www.securityfocus.com/bid/8390/info Multiple SQL injection vulnerabilities have been reported in PHP Website. These issue may be exploited by sending a malicious request to the calendar script. Possible consequencs of exploitation include compromise of the site and disclosure of...
phpWebSite 0.7.3/0.8.2/0.8.3/0.9.2 pagemaster Module - 'PAGE_id' Cross-Site Scripting
source: https://www.securityfocus.com/bid/8393/info PHP Website is a web site content management system that allows for easy maintainance and administration of interactive community-driven websites. Cross-site vulnerabilities have been reported in the Calendar, PageMaster, Search and Fatcat modul...
phpWebSite 0.7.3/0.8.2/0.8.3/0.9.2 Calendar Module - 'day' Cross-Site Scripting
source: https://www.securityfocus.com/bid/8393/info PHP Website is a web site content management system that allows for easy maintainance and administration of interactive community-driven websites. Cross-site vulnerabilities have been reported in the Calendar, PageMaster, Search and Fatcat modul...
phpWebSite 0.7.3/0.8.2/0.8.3/0.9.2 fatcat Module - 'fatcat_id' Cross-Site Scripting
source: https://www.securityfocus.com/bid/8393/info PHP Website is a web site content management system that allows for easy maintainance and administration of interactive community-driven websites. Cross-site vulnerabilities have been reported in the Calendar, PageMaster, Search and Fatcat modul...