CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2007-1108

Malware in sbrugna...

6.8CVSS6.4AI score0.0232EPSS

Exploits1References16

EUVD•added 2025/10/07 12:30 a.m.•1 views

EUVD-2007-1107

Malware in sbrugna...

5CVSS6.4AI score0.05691EPSS

Exploits0References8

Packet Storm•added 2007/02/28 12:0 a.m.•33 views

activecal120-multi.txt

ActiveCalendar 1.2.0, Multiple vulnerabilities Vendor site : http://www.micronetwork.de/activecalendar/ Global risk : Critical Multiples XSS : --------------- /activecalendar/data/page.php?css="alertdocument.cookie In : /data/ flatevents.php js.php mysqlevents.php m2.php m3.php m4.php xmlevents.p...

7.4AI score

Exploits0

NVD•added 2007/02/26 5:28 p.m.•10 views

CVE-2007-1110

Directory traversal vulnerability in data/showcode.php in ActiveCalendar 1.2.0 allows remote attackers to read arbitrary files via a .. dot dot in the page parameter...

5CVSS6.6AI score0.05691EPSS

Exploits0References7

Prion•added 2007/02/26 5:28 p.m.•7 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in ActiveCalendar 1.2.0 allow remote attackers to inject arbitrary web script or HTML via the css parameter to 1 flatevents.php, 2 js.php, 3 mysqlevents.php, 4 m2.php, 5 m3.php, 6 m4.php, 7 xmlevents.php, 8 y2.php, or 9 y3.php in data/...

6.8CVSS6AI score0.0232EPSS

Exploits1References15Affected Software1

NVD•added 2007/02/26 5:28 p.m.•7 views

CVE-2007-1111

6.8CVSS5.8AI score0.0232EPSS

Exploits1References15

Prion•added 2007/02/26 5:28 p.m.•7 views

Directory traversal

Directory traversal vulnerability in data/showcode.php in ActiveCalendar 1.2.0 allows remote attackers to read arbitrary files via a .. dot dot in the page parameter...

5CVSS7.1AI score0.05691EPSS

Exploits0References7Affected Software1

Cvelist•added 2007/02/26 5:0 p.m.•14 views

CVE-2007-1111

5.8AI score0.0232EPSS

Exploits1References15

Cvelist•added 2007/02/26 5:0 p.m.•17 views

CVE-2007-1110

Directory traversal vulnerability in data/showcode.php in ActiveCalendar 1.2.0 allows remote attackers to read arbitrary files via a .. dot dot in the page parameter...

6.6AI score0.05691EPSS

Exploits0References7

CVE•added 2007/02/26 5:0 p.m.•43 views

CVE-2007-1110

CVE-2007-1110 is a directory traversal vulnerability affecting ActiveCalendar 1.2.0, where an attacker can read arbitrary files by exploiting a .. path in the page parameter of data/showcode.php. The issue is triggered by insufficient input validation in the page parameter, allowing remote attack...

5CVSS6.6AI score0.05691EPSS

Exploits0References7Affected Software1

CVE•added 2007/02/26 5:0 p.m.•55 views

CVE-2007-1111

CVE-2007-1111 affects ActiveCalendar 1.2.0 with multiple XSS vulnerabilities in data/ via the css parameter to nine PHP scripts (flatevents.php, js.php, mysqlevents.php, m_2.php, m_3.php, m_4.php, xmlevents.php, y_2.php, y_3.php). Root cause: improper handling of user-supplied css parameter leads...

6.8CVSS5.8AI score0.0232EPSS

Exploits1References15Affected Software1

securityvulns•added 2007/02/25 12:0 a.m.•32 views

ActiveCalendar 1.2.0, Multiple vulnerabilities

ActiveCalendar 1.2.0, Multiple vulnerabilities Vendor site : http://www.micronetwork.de/activecalendar/ Global risk : Critical Multiples XSS : --------------- /activecalendar/data/page.php?css="scriptalertdocument.cookie/script In : /data/ flatevents.php js.php mysqlevents.php m2.php m3.php m4.ph...

1AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by