25 matches found
CVE-2009-4804
Cross-site scripting XSS vulnerability in the Calendar Base cal extension before 1.1.1 for TYPO3, when Internet Explorer 6 is used, allows remote attackers to inject arbitrary web script or HTML via "search parameters."...
CVE-2009-4158
SQL injection vulnerability in the Calendar Base cal extension before 1.2.1 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...
EUVD-2010-2147
Malware in sbrugna...
EUVD-2014-8166
Malware in sbrugna...
EUVD-2009-4767
Malware in sbrugna...
CVE-2010-2131
SQL injection vulnerability in the Calendar Base cal extension before 1.3.2 for TYPO3 allows remote attackers to execute arbitrary SQL commands via iCalendar data...
CVE-2014-8325
The Calendar Base cal extension before 1.5.9 and 1.6.x before 1.6.1 for TYPO3 allows remote attackers to cause a denial of service resource consumption via vectors related to the PHP PCRE library...
Code injection
The Calendar Base cal extension before 1.5.9 and 1.6.x before 1.6.1 for TYPO3 allows remote attackers to cause a denial of service resource consumption via vectors related to the PHP PCRE library...
CVE-2014-8325
CVE-2014-8325 affects the TYPO3 Calendar Base (cal) extension. The vulnerability arises when user input is passed to PHP’s PCRE library without validation, enabling remote attackers to cause a denial of service through resource consumption. Affected are TYPO3 cal versions before 1.5.9 and 1.6.x b...
CVE-2014-8325
The Calendar Base cal extension before 1.5.9 and 1.6.x before 1.6.1 for TYPO3 allows remote attackers to cause a denial of service resource consumption via vectors related to the PHP PCRE library...
Denial of Service vulnerability in extension Calendar Base (cal)
It has been discovered that the extension "Calendar Base" cal is susceptible to Denial of Service. Release Date: October 17, 2014 Bulletin Update: October 18, 2014 added CVE Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: a...
CVE-2010-2131
SQL injection vulnerability in the Calendar Base cal extension before 1.3.2 for TYPO3 allows remote attackers to execute arbitrary SQL commands via iCalendar data...
Sql injection
SQL injection vulnerability in the Calendar Base cal extension before 1.3.2 for TYPO3 allows remote attackers to execute arbitrary SQL commands via iCalendar data...
CVE-2010-2131
SQL injection vulnerability in the Calendar Base cal extension before 1.3.2 for TYPO3 allows remote attackers to execute arbitrary SQL commands via iCalendar data...
CVE-2010-2131
CVE-2010-2131 affects the TYPO3 Calendar Base (cal) extension prior to 1.3.2. The vulnerability allows remote attackers to execute arbitrary SQL commands via iCalendar data, due to an SQL injection in the cal extension. In public records (NVD) the issue is rated HIGH (CVSS v2: 7.5) with network a...
Cross site scripting
Cross-site scripting XSS vulnerability in the Calendar Base cal extension before 1.1.1 for TYPO3, when Internet Explorer 6 is used, allows remote attackers to inject arbitrary web script or HTML via "search parameters."...
CVE-2009-4804
Cross-site scripting XSS vulnerability in the Calendar Base cal extension before 1.1.1 for TYPO3, when Internet Explorer 6 is used, allows remote attackers to inject arbitrary web script or HTML via "search parameters."...
CVE-2009-4804
CVE-2009-4804 is an XSS vulnerability in the TYPO3 Calendar Base (cal) extension, present in versions before 1.1.1 when Internet Explorer 6 is used. The issue allows an attacker to inject arbitrary script/HTML via the "search parameters" in the affected interface. Connected documents corroborate ...
Blind SQL Injection vulnerability in extension Calendar Base (cal)
It has been discovered that the extension Calendar Base cal is vulnerable to Blind SQL Injection. Release Date: March 2, 2010 Component Type: Third party extension. This extension is not a part of the TYPO3 default installation. Affected Versions: Version 1.3.1 and all versions below Vulnerabilit...
CVE-2009-4158
SQL injection vulnerability in the Calendar Base cal extension before 1.2.1 for TYPO3 allows remote attackers to execute arbitrary SQL commands via unspecified vectors...