CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Multiple SQL injection vulnerabilities in PHP Lite Calendar Express 2.2 allow remote attackers to execute arbitrary SQL commands via the cid parameter to 1 login.php, 2 auth.php, and 3 subscribe.php. NOTE: the month.php, year.php, week.php, and day.php vectors are already covered by CVE-2005-4009...

7.5CVSS8.5AI score0.00603EPSS

Exploits2References1

seebug.org•added 2014/07/01 12:0 a.m.•10 views

Calendar Express 2.2 Search.PHP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/14505/info Calendar Express is prone to a cross-site scripting vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input. An attacker may leverage this issue to have arbitra...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•17 views

Calendar Express Search.PHP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/22578/info Calendar Express is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•14 views

Calendar Express 2.0 - SQL Injection Vulnerability

No description provided by source. Calendar Express 2.0 Vulnerability Calendar Express 2.0 Powered by Phplite.com Download:http://script.wareseeker.com/download/calendar-express-2.rar/11517 Author: Baybora Site: www.1923turk.bizhttp://www.1923turk.biz Exploit: POST...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•25 views

PHP Lite Calendar Express 2.2 auth.php cid Parameter SQL Injection

No description provided by source. source: http://www.securityfocus.com/bid/14504/info Calendar Express is prone to multiple SQL-injection vulnerabilities because the application fails to properly sanitize user-supplied input before using it in SQL queries. A successful exploit could allow an...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•21 views

Calendar Express 2.2 Month.PHP SQL Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/18314/info Calendar Express is prone to an SQL-injection vulnerability. This issue is due to a failure in the application to properly sanitize user-supplied input before using it in an SQL query. A successful exploit coul...

7.1AI score

Exploits0

Packet Storm•added 2010/01/12 12:0 a.m.•17 views

Calendar Express 2 Cross Site Scripting

Exploit Title: Calendar Express 2 Cross Site Scripting Exploit Date: January 11th, 2010 Author: Sora Version: 2.0 Tested on: Windows Vista Home Premium and Linux 2.6.32 ---------------------------------------- Calendar Express 2 XSS Exploit Author: Sora Contact: vhr95zw at hotmail dot com Website...

Exploits0

Packet Storm•added 2009/12/30 12:0 a.m.•19 views

Calendar Express 2.0 SQL Injection

Calendar Express 2.0 Vulnerability Calendar Express 2.0 Powered by Phplite.com Download:http://script.wareseeker.com/download/calendar-express-2.rar/11517 Author: Baybora Site: www.1923turk.biz Exploit: POST...

0.9AI score

Exploits0

seebug.org•added 2009/12/28 12:0 a.m.•10 views

Calendar Express 2.0 SQL Injection Vulnerability

7.1AI score

Exploits0

0day.today•added 2009/12/28 12:0 a.m.•14 views

Calendar Express 2.0 SQL Injection Vulnerability

Exploit for unknown platform in category web applications ================================================ Calendar Express 2.0 SQL Injection Vulnerability ================================================ Calendar Express 2.0 Vulnerability Calendar Express 2.0 Powered by Phplite.com...

7.1AI score

Exploits0

exploitpack•added 2009/12/28 12:0 a.m.•10 views

Calendar Express 2.0 - SQL Injection

Calendar Express 2.0 - SQL Injection Calendar Express 2.0 Vulnerability Calendar Express 2.0 Powered by Phplite.com Download:http://script.wareseeker.com/download/calendar-express-2.rar/11517 Author: Baybora Site: www.1923turk.biz Exploit: POST...

0.9AI score

Exploits0

Exploit DB•added 2009/12/28 12:0 a.m.•25 views

Calendar Express 2.0 - SQL Injection

7AI score

Exploits0

Packet Storm•added 2009/07/08 12:0 a.m.•31 views

Calendar Express 2 Cross Site Scripting

0000000000000000000000000000000000 000000000000000000000 00000000000000000000000000000000000 0000000000000000 00000000000000000000000000000000 + Calendar Express 2 Remote Remote XSS vulnerability + Author : 599eme Man + Contact : [email protected] + Thanks : Moudi, Neocoderz, Sheiry, Shimik Root aka...

0.1AI score

Exploits0

Prion•added 2009/04/01 6:30 p.m.•16 views

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in Sun Calendar Express Web Server in Sun ONE Calendar Server 6.0 and Sun Java System Calendar Server 6 2004Q2 through 6.3-7.01 allow remote attackers to inject arbitrary web script or HTML via 1 the fmt-out parameter to login.wcap or 2 the date...

4.3CVSS6AI score0.02307EPSS

Exploits2References7Affected Software2

NVD•added 2009/04/01 6:30 p.m.•13 views

CVE-2009-1218

4.3CVSS5.7AI score0.02307EPSS

Exploits2References7

Prion•added 2009/04/01 6:30 p.m.•18 views

Default credentials

Sun Calendar Express Web Server in Sun ONE Calendar Server 6.0 and Sun Java System Calendar Server 6 2004Q2 through 6.3-7.01 allows remote attackers to cause a denial of service daemon crash via multiple requests to the default URI with alphabetic characters in the tzid parameter...

5CVSS7.1AI score0.12566EPSS

Exploits2References6Affected Software2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by