EUVD-2006-1512

Malware in sbrugna...

BIT-WORDPRESS-2023-23814

Missing Authorization vulnerability in CodePeople CP Multi View Event Calendar allows Exploiting Incorrectly Configured Access Control Security Levels.This issue affects CP Multi View Event Calendar : from n/a through 1.4.13...

PT-2024-23287 · Unknown · Typps Calendarista

Name of the Vulnerable Software and Affected Versions: Typps Calendarista versions prior to 15.5.7 Description: The issue is related to an SQL Injection vulnerability due to the improper neutralization of special elements used in an SQL command. This allows for potential exploitation by injecting...

OSS Calendar vulnerable to SQL injection

Overview OSS Calendar provided by Thinkingreed Inc. contains an SQL injection vulnerability CWE-89. Shogo Iyota of Mitsui Bussan Secure Directions, Inc. reported this vulnerability to IPA. JPCERT/CC coordinated with the developer under Information Security Early Warning Partnership. Impact A...

Apache Tomcat Example Application CSRF and XSS Vulnerabilities

Cross-site request forgery CSRF vulnerability in cal2.jsp in the calendar examples application in Apache Tomcat 4.1.31 allows remote attackers to add events as arbitrary users via the time and description parameters...

Supercali Cross-Site Scripting Vulnerability

Supercali is a PHP and MySQL based for supporting nested classes of events and multiple versions of the event calendar script . A cross-site scripting vulnerability exists in Supercali. An attacker can exploit the vulnerability to execute arbitrary script code in the browser of a trusted user in...

Eventy CMS 1.8 Plus - Multiple Vulnerabilities

No description provided by source. Title: ====== Eventy CMS v1.8 Plus - Multiple Web Vulnerablities Date: ===== 2012-11-13 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=756 VL-ID: ===== 756 Common Vulnerability Scoring System: ==================================== 8.3...

Eventy CMS 1.8 Plus - Multiple Vulnerabilities

Eventy CMS 1.8 Plus - Multiple Vulnerabilities Title: ====== Eventy CMS v1.8 Plus - Multiple Web Vulnerablities Date: ===== 2012-11-13 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=756 VL-ID: ===== 756 Common Vulnerability Scoring System:...

Eventy CMS 1.8 Plus - Multiple Vulnerabilities

Title: ====== Eventy CMS v1.8 Plus - Multiple Web Vulnerablities Date: ===== 2012-11-13 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=756 VL-ID: ===== 756 Common Vulnerability Scoring System: ==================================== 8.3 Introduction: ============= Publish...

Eventy CMS v1.8 Plus Multiple Vulnerabilities

Exploit for php platform in category web applications Eventy CMS v1.8 Plus - Multiple Web Vulnerablities Introduction: ============= Publish Your Events In Online Calendar. Eventy Is Beautiful And Easy To Use Web Based Event Calendar Software Publish events like parties, courses, meetings,...

Calendar ( Provided by Codewalkers ) - SQL Injection

Produit : Calendar Provided by Codewalkers Site officiel : http://Calendar.codewalkers.com Vulnйrabilitй : SQL Injection Exploitation : /calendar.php?display=event&id=SQL Crйdit : Silitix - www.Silitix.com Avis de sйcuritй original : www.Silitix.com/calendar-cws.php Greetz : Simo64 / MSRT /...

[Full-disclosure] Calendar ( Provided by Codewalkers ) - SQL Injection

Produit : Calendar Provided by Codewalkers Site officiel : http://Calendar.codewalkers.com Vulnrabilit : SQL Injection Exploitation : /calendar.php?display=event&id=SQL Crdit : Silitix - www.Silitix.com Avis de scurit original : www.Silitix.com/calendar-cws.php Greetz : Simo64 / MSRT / VeNoM630 /...

Cross site scripting

Multiple cross-site scripting XSS vulnerabilities in MH Software Connect Daily Web Calendar Software 3.2.9 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 calendarid, 2 stylesheet, and 3 start parameters in a ViewDay.html; the 4 txtSearch and 5 opgSearch...

CVE-2006-1508

Multiple cross-site scripting XSS vulnerabilities in MH Software Connect Daily Web Calendar Software 3.2.9 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 calendarid, 2 stylesheet, and 3 start parameters in a ViewDay.html; the 4 txtSearch and 5 opgSearch...

CVE-2006-1508

CVE-2006-1508 affects MH Software Connect Daily Web Calendar Software (version 3.2.9 and earlier). The vulnerability is multiple cross-site scripting (XSS) flaws that allow remote attackers to inject arbitrary script or HTML via various query parameters across multiple pages: calendar_id, style_s...

CVE-2006-1508

Multiple cross-site scripting XSS vulnerabilities in MH Software Connect Daily Web Calendar Software 3.2.9 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 calendarid, 2 stylesheet, and 3 start parameters in a ViewDay.html; the 4 txtSearch and 5 opgSearch...