7 matches found
EUVD-2006-6211
Malware in sbrugna...
CVE-2006-6229
Codewalkers ltwCalendar aka PHP Event Calendar before 4.2.1 logs failed passwords, which might allow attackers to infer correct passwords from the log file...
CVE-2006-6228
Cross-site scripting XSS vulnerability in Codewalkers ltwCalendar aka PHP Event Calendar before 4.2.1 allows remote attackers to inject arbitrary HTML or web script via unknown vectors...
CVE-2006-3041
PHP remote file inclusion vulnerability in Ltwcalendar/calendar.php in Codewalkers Ltwcalendar 4.1.3 allows remote attackers to execute arbitrary PHP code via a URL in the ltwconfigincludedir parameter. NOTE: CVE disputes this claim, since the $ltwconfigincludedir variable is defined as a static...
CVE-2005-4011
SQL injection vulnerability in calendar.php in Codewalkers ltwCalendar aka PHP Event Calendar 4.2, 4.1.3, and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter...
CVE-2005-4011
SQL injection vulnerability in calendar.php in Codewalkers ltwCalendar aka PHP Event Calendar 4.2, 4.1.3, and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter...
Codewalkers ltwCalendar 4.x SQL inj. vuln
Codewalkers ltwCalendar 4.x SQL inj. vuln Vuln. dicovered by : r0t Date: 29 nov. 2005 Orginal advisory:http://pridels.blogspot.com/2005/11/codewalkers-ltwcalendar-4x-sql-inj.html Vendor:http://calendar.codewalkers.com/ affected version: v4.1.3 and prior Product Description: ltwCalendar is an even...