Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2008-6289

Malware in sbrugna...

7.5CVSS6.4AI score0.00485EPSS
Exploits1References4
RedhatCVE
RedhatCVEadded 2025/05/22 7:20 p.m.8 views

CVE-2021-24225

The Advanced Booking Calendar WordPress plugin before 1.6.7 did not sanitise the calId GET parameter in the "Seasons & Calendars" page before outputing it in an A tag, leading to a reflected XSS issue...

5.4CVSS5.8AI score0.00162EPSS
Exploits2References1
OSV
OSVadded 2021/04/12 2:15 p.m.0 views

CVE-2021-24225

The Advanced Booking Calendar WordPress plugin before 1.6.7 did not sanitise the calId GET parameter in the "Seasons & Calendars" page before outputing it in an A tag, leading to a reflected XSS issue...

5.4CVSS6.1AI score0.00162EPSS
Exploits2References2
OwnCloud
OwnCloudadded 2015/08/24 10:9 p.m.36 views

Server: Calendar export: Authorization Bypass Through User-Controlled Key

Due to not properly checking the ownership of an calendar, an authenticated attacker is able to download calendars of other users via the "calid" GET parameter to export.php in /apps/calendar/ For more information please consult the official advisory. This advisory is licensed CC BY-SA 4.0...

4CVSS4.4AI score0.00176EPSS
Exploits0Affected Software1
Prion
Prionadded 2014/11/04 3:55 p.m.12 views

Sql injection

SQL injection vulnerability in the CP Multi View Event Calendar plugin 1.01 for WordPress allows remote attackers to execute arbitrary SQL commands via the calid parameter...

7.5CVSS9.2AI score0.78024EPSS
Exploits1References5Affected Software1
exploitpack
exploitpackadded 2014/10/27 12:0 a.m.16 views

WordPress Plugin CP Multi View Event Calendar 1.01 - SQL Injection

WordPress Plugin CP Multi View Event Calendar 1.01 - SQL Injection Exploit Title : CP Multi View Event Calendar 1.01 SQL Injection Vulnerability Exploit Author : Claudio Viviani Software Link : https://downloads.wordpress.org/plugin/cp-multi-view-calendar.zip Date : 2014-10-23 Tested on : Windows...

0.4AI score
Exploits0
seebug.org
seebug.orgadded 2014/01/22 12:0 a.m.15 views

Joomla Zap Weather FPD & Zap Calendar跨站脚本漏洞

No description provided by source. Title - Joomla Zap Weather FPD & Zap Calendar XSS Date: 01.21.2014 Vendor: zcontent.net extensions.joomla.org/extensions/owner/cogliano Versions - Z Weather v9 & Zap Calendar v4.0 Latests ATM Contant: smashatdevilteam.pl Zap Weather PoC -...

7.1AI score
Exploits0
0day.today
0day.todayadded 2014/01/21 12:0 a.m.38 views

Joomla Zap Weather FPD & Zap Calendar XSS Vulnerability

Latests zcontent plugins suffers on cross site scripting and full path disclosure vulnerabilities because of poor variables filtration. Title - Joomla Zap Weather FPD & Zap Calendar XSS Date: 01.21.2014 Vendor: zcontent.net extensions.joomla.org/extensions/owner/cogliano Versions - Z Weather v9 &...

6.7AI score
Exploits0
NVD
NVDadded 2009/02/27 11:30 a.m.9 views

CVE-2008-6319

SQL injection vulnerability in calendarevent.cfm in CFCalendar allows remote attackers to execute arbitrary SQL commands via the calid parameter...

7.5CVSS8.4AI score0.00485EPSS
Exploits1References3
Cvelist
Cvelistadded 2009/02/27 11:0 a.m.12 views

CVE-2008-6319

SQL injection vulnerability in calendarevent.cfm in CFCalendar allows remote attackers to execute arbitrary SQL commands via the calid parameter...

8.4AI score0.00485EPSS
Exploits1References3
Rows per page
Query Builder