8 matches found
EUVD-2004-1524
Malware in sbrugna...
CVE-2004-1530
SQL injection vulnerability in the Event Calendar module 2.13 for PHP-Nuke allows remote attackers to execute arbitrary SQL commands via the 1 eid or 2 cid parameters...
CVE-2004-1529
CVE-2004-1529 refers to a Cross-site Scripting (XSS) vulnerability in the Event Calendar module 2.13 for PHP-Nuke. The issue allows remote attackers to trigger script execution by supplying malicious input in the Preview operation via the parameters (type, day, month, year) or in event comments. ...
CVE-2004-1528
The Event Calendar module 2.13 for PHP-Nuke allows remote attackers to gain sensitive information via an HTTP request to 1 config.php, 2 index.php, or 3 submit.php, which reveal the full path in an error message...
CVE-2004-1529
Cross-site scripting XSS vulnerability in the Event Calendar module 2.13 for PHP-Nuke allows remote attackers to execute arbitrary web script via the 1 type, 2 day, 3 month, or 4 year parameters in a Preview operation, or 5 event comments...
CVE-2004-1528
The Event Calendar module 2.13 for PHP-Nuke allows remote attackers to gain sensitive information via an HTTP request to 1 config.php, 2 index.php, or 3 submit.php, which reveal the full path in an error message...
CVE-2004-1530
SQL injection vulnerability in the Event Calendar module 2.13 for PHP-Nuke allows remote attackers to execute arbitrary SQL commands via the 1 eid or 2 cid parameters...
[waraxe-2004-SA#038 - Multiple vulnerabilities in Event Calendar module for PhpNuke]
================================================================================ waraxe-2004-SA038 ================================================================================ Multiple vulnerabilities in Event Calendar module for PhpNuke...