Lucene search
+L

125 matches found

WPVulnDB
WPVulnDB
added 2014/08/01 12:0 a.m.14 views

WP-Cal 0.3 - editevent.php SQL Injection

The wp-cal WordPress plugin was affected by an editevent.php SQL Injection security vulnerability...

7.5CVSS2.6AI score0.02742EPSS
Exploits1References1Affected Software1
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.17 views

ACME Perl-Cal 2.99 Cal_make.PL Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/15779/info Perl-Cal is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitrary scrip...

7.1AI score
Exploits0
Patchstack
Patchstack
added 2014/06/23 12:0 a.m.15 views

WordPress ZdStatistics Plugin <= 2.0.1 - XSS

Because of this vulnerability in cal/test.php, the attackers can inject arbitrary web script or HTML via the "lang" parameter. Solution Update the plugin...

4.3CVSS2.7AI score0.01629EPSS
Exploits1References1Affected Software1
Prion
Prion
added 2014/04/12 4:37 a.m.12 views

Privilege escalation

Cisco ONS 15454 controller cards with software 9.6 and earlier allow remote attackers to cause a denial of service card reset via a TCP FIN attack that triggers file-descriptor exhaustion and a failure to open a CAL pipe, aka Bug ID CSCug97348...

5CVSS7.1AI score0.0181EPSS
Exploits1References2Affected Software1
Cisco
Cisco
added 2014/04/08 5:36 p.m.28 views

Cisco ONS 15454 Controller Card Denial of Service Vulnerability

A vulnerability in the code of the Cisco ONS 15454 Controller Cards could allow an unauthenticated, remote attacker to cause the control card to reset. The vulnerability is due to improper instructions to reload the controller card. A CAL pipe fails to open when the file descriptors are exhausted...

5CVSS6.4AI score0.0181EPSS
Exploits1References1
ThreatPost
ThreatPost
added 2012/12/12 4:54 p.m.7 views

14,000 Californians at Risk Following Medi-Cal, DHCS Breach

Medi-Cal, California’s Medicaid welfare program, came clean to customers this week admitting it mistakenly posted almost 14,000 of its users’ Social Security numbers online last month. Providers of In-Home Supportive Services IHSS care in 25 counties are affected by the breach, according to a...

1.1AI score
Exploits0References5
Prion
Prion
added 2012/09/06 10:41 a.m.22 views

Design/Logic Flaw

Untrusted search path vulnerability in ALSee 6.20.0.1 allows local users to gain privileges via a Trojan horse patchani.dll file in the current working directory, as demonstrated by a directory that contains a .ani, .bmp, .cal, .hdp, .jpe, .mac, .pbm, .pcx, .pgm, .png, .psd, .ras, .tga, or .tiff...

6.9CVSS7AI score0.00399EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2011/10/07 10:55 a.m.14 views

Cross site request forgery (csrf)

Multiple cross-site request forgery CSRF vulnerabilities in calendar.class.php in ApPHP Calendar ApPHP CAL allow remote attackers to hijack the authentication of unspecified victims for requests that use the 1 categoryname, 2 categorydescription, 3 eventname, or 4 eventdescription parameter...

6.8CVSS7.8AI score0.00639EPSS
Exploits1References3
CVE
CVE
added 2011/10/07 10:0 a.m.37 views

CVE-2010-4881

Affected product : ApPHP Calendar (ApPHP CAL), specifically the calendar.class.php component. Vulnerability : Multiple cross-site request forgery (CSRF) weaknesses that allow remote attackers to hijack an authenticated user’s session for requests using one of four parameters: category_name, categ...

6.8CVSS7.5AI score0.00639EPSS
Exploits1References3Affected Software1
Check Point Advisories
Check Point Advisories
added 2009/11/10 12:0 a.m.19 views

Microsoft License Logging Server RPC Call Heap Overflow (MS09-064; CVE-2009-2523)

The License Logging service is a tool that was originally designed to help customers manage licenses for the Microsoft server products that are licensed in the Server Client Access License CAL model. License Logging service is one of the services used by Windows Small Business Server 2003 or...

10CVSS7.5AI score0.26456EPSS
Exploits1
0day.today
0day.today
added 2008/02/24 12:0 a.m.21 views

php Download Manager <= 1.1 Local File Inclusion Vulnerability

Exploit for unknown platform in category web applications ============================================================== php Download Manager This page has no content."; ? Exploit : Vuln.Com/include/body.inc.php?content=../../etc/passwd ---------------------------- INDEPENDENT KOSOVA H ARNAVUT...

7.1AI score
Exploits0
NVD
NVD
added 2008/01/30 10:0 p.m.16 views

CVE-2008-0490

SQL injection vulnerability in functions/editevent.php in the WP-Cal 0.3 plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS8.5AI score0.02742EPSS
Exploits1References5
Prion
Prion
added 2008/01/30 10:0 p.m.17 views

Sql injection

SQL injection vulnerability in functions/editevent.php in the WP-Cal 0.3 plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the id parameter...

7.5CVSS9.2AI score0.02742EPSS
Exploits1References5Affected Software1
Cvelist
Cvelist
added 2008/01/30 9:0 p.m.26 views

CVE-2008-0490

SQL injection vulnerability in functions/editevent.php in the WP-Cal 0.3 plugin for WordPress allows remote attackers to execute arbitrary SQL commands via the id parameter...

8.5AI score0.02742EPSS
Exploits1References5
CVE
CVE
added 2008/01/30 9:0 p.m.43 views

CVE-2008-0490

The WP-Cal 0.3 WordPress plugin contains an SQL injection in functions/editevent.php, exploitable via the id parameter. This affects the plugin’s ability to process events and can lead to arbitrary SQL execution. Connected sources confirm the component and parameter, with remediation guidance to ...

7.5CVSS8.5AI score0.02742EPSS
Exploits1References5Affected Software1
seebug.org
seebug.org
added 2008/01/28 12:0 a.m.1743 views

Wordpress Plugin WP-Cal 0.3 editevent.php SQL Injection Vulnerability

No description provided by source. -------------------------------------------------------------- H-T Team HouSSaMix + ToXiC350 from MoroCCo -------------------------------------------------------------- Author : Houssamix From H-T Team Script : Wordpress Plugin WP-Cal Download :...

7.1AI score
Exploits0
Packet Storm
Packet Storm
added 2008/01/28 12:0 a.m.33 views

wpcal-sql.txt

-------------------------------------------------------------- H-T Team HouSSaMix + ToXiC350 from MoroCCo -------------------------------------------------------------- Author : Houssamix From H-T Team Script : Wordpress Plugin WP-Cal Download : http://www.fahlstad.se/wp-plugins/wp-cal/ BUG :...

7.4AI score
Exploits0
exploitpack
exploitpack
added 2008/01/27 12:0 a.m.25 views

WordPress Plugin WP-Cal 0.3 - editevent.php SQL Injection

WordPress Plugin WP-Cal 0.3 - editevent.php SQL Injection -------------------------------------------------------------- H-T Team HouSSaMix + ToXiC350 from MoroCCo -------------------------------------------------------------- Author : Houssamix From H-T Team Script : Wordpress Plugin WP-Cal...

0.4AI score
Exploits0
Exploit DB
Exploit DB
added 2008/01/27 12:0 a.m.46 views

WordPress Plugin WP-Cal 0.3 - &#039;editevent.php&#039; SQL Injection

-------------------------------------------------------------- H-T Team HouSSaMix + ToXiC350 from MoroCCo -------------------------------------------------------------- Author : Houssamix From H-T Team Script : Wordpress Plugin WP-Cal Download : http://www.fahlstad.se/wp-plugins/wp-cal/ BUG :...

7.4AI score
Exploits0
xssed
xssed
added 2007/12/09 12:0 a.m.12 views

Unfixed XSS vulnerability at www.cal-agri.com

Security researcher Narcoticxs, has submitted on 12/09/2007 a cross-site-scripting XSS vulnerability affecting www.cal-agri.com, which at the time of submission ranked 0 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 12/09/2007. It is currentl...

Exploits0References1
Rows per page
Query Builder