CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

15 matches found

exploitpack•added 2014/12/09 12:0 a.m.•26 views

Flat Calendar 1.1 - HTML Injection

Flat Calendar 1.1 - HTML Injection !/usr/bin/perl -w Title : Flat Calendar v1.1 HTML Injection Exploit Download : http://www.circulargenius.com/flatcalendar/FlatCalendar-v1.1.zip Author : ZoRLu / [email protected] Website : http://milw00rm.com / its online Twitter : https://twitter.com/milw00rm ...

7.6AI score

Exploits0

Exploit DB•added 2014/12/09 12:0 a.m.•19 views

Flat Calendar 1.1 - HTML Injection

!/usr/bin/perl -w Title : Flat Calendar v1.1 HTML Injection Exploit Download : http://www.circulargenius.com/flatcalendar/FlatCalendar-v1.1.zip Author : ZoRLu / [email protected] Website : http://milw00rm.com / its online Twitter : https://twitter.com/milw00rm or @milw00rm Test : Windows7 Ultima...

7.4AI score

Exploits0

Packet Storm•added 2014/12/08 12:0 a.m.•31 views

Flat Calendar 1.1 HTML Injection

7.4AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•9 views

Flat Calendar 1.1 - Multiple Administrative Scripts Authentication Bypass Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/29662/info Flat Calendar is prone to multiple authentication-bypass vulnerabilities because it fails to perform adequate authentication checks. An attacker can exploit these issues to gain unauthorized access to the...

7.1AI score

Exploits0

seebug.org•added 2014/07/01 12:0 a.m.•10 views

Flat Calendar 1.1 'add.php' HTML Injection Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/34688/info Flat Calendar is prone to an HTML-injection vulnerability because it fails to sufficiently sanitize user-supplied data. Attacker-supplied HTML or JavaScript code could run in the context of the affected site,...

7.1AI score

Exploits0

Exploit DB•added 2009/04/22 12:0 a.m.•17 views

Flat Calendar 1.1 - 'add.php' HTML Injection

source: https://www.securityfocus.com/bid/34688/info Flat Calendar is prone to an HTML-injection vulnerability because it fails to sufficiently sanitize user-supplied data. Attacker-supplied HTML or JavaScript code could run in the context of the affected site, potentially allowing the attacker t...

7.4AI score

Exploits0

Packet Storm•added 2009/04/22 12:0 a.m.•14 views

Flat Calendar Bypass / Cross Site Scripting

Flat Calendar By-Pass / Html inj / XSS Multiple Vulns. ---------------------------------------------------------- Discovered By: ZoRLu msn: [email protected] Date: 23.04.09 Home: yildirimordulari.com / z0rlu.blogspot.com N0T: YALNIZLIK, YiTiRDi ANLAMINI YALNIZLIGIMDA : N0T: Alem Hep Hacker Olm...

0.2AI score

Exploits0

NVD•added 2009/04/21 6:30 p.m.•5 views

CVE-2008-6736

Flat Calendar 1.1 does not properly restrict access to administrative functions, which allows remote attackers to 1 add new events via calAdd.php, as reachable from admin/add.php, or 2 delete events via admin/deleteEvent.php. NOTE: this is only a vulnerability when the administrator does not foll...

6.4CVSS6.7AI score0.01796EPSS

Exploits1References4

Prion•added 2009/04/21 6:30 p.m.•8 views

Design/Logic Flaw

6.4CVSS7.2AI score0.01796EPSS

Exploits1References4Affected Software1

CVE•added 2009/04/21 6:7 p.m.•36 views

CVE-2008-6736

CVE-2008-6736 affects Flat Calendar 1.1. The issue: improper restriction of access to administrative functions, allowing remote attackers to add events via calAdd.php (reachable from admin/add.php) or delete events via admin/deleteEvent.php. Root cause described in sources as insufficient access ...

6.4CVSS6.9AI score0.01796EPSS

Exploits1References4Affected Software1

Cvelist•added 2009/04/21 6:7 p.m.•14 views

CVE-2008-6736

6.7AI score0.01796EPSS

Exploits1References4

securityvulns•added 2008/06/14 12:0 a.m.•35 views

Flat Calendar v1.1 Remote Permission Bypass Vulnerability

Flat Calendar v1.1 Remote Permission Bypass Vulnerability Author : CrackersChild Dork : Flat Calendar: View All Flat Calendar: View All iзin yaklak 654.000 sonuзtan Exploits: site.com/calenderpath/admin/add.php Adding New Evetns without admin permissions...

2.4AI score

Exploits0

exploitpack•added 2008/06/11 12:0 a.m.•14 views

Flat Calendar 1.1 - Multiple Administrative Scripts Authentication Bypass Vulnerabilities

Flat Calendar 1.1 - Multiple Administrative Scripts Authentication Bypass Vulnerabilities source: https://www.securityfocus.com/bid/29662/info Flat Calendar is prone to multiple authentication-bypass vulnerabilities because it fails to perform adequate authentication checks. An attacker can explo...

0.4AI score

Exploits0

Exploit DB•added 2008/06/11 12:0 a.m.•16 views

Flat Calendar 1.1 - Multiple Administrative Scripts Authentication Bypass Vulnerabilities

source: https://www.securityfocus.com/bid/29662/info Flat Calendar is prone to multiple authentication-bypass vulnerabilities because it fails to perform adequate authentication checks. An attacker can exploit these issues to gain unauthorized access to the application and make arbitrary changes ...

7.4AI score

Exploits0

Packet Storm•added 2008/06/11 12:0 a.m.•22 views

flatcal-bypass.txt

Flat Calendar v1.1 Remote Permission Bypass Vulnerability Author : CrackersChild Dork : Flat Calendar: View All Flat Calendar: View All için yaklaşık 654.000 sonuçtan Exploits: site.com/calenderpath/admin/add.php Adding New Evetns without admin permissions...

7.4AI score

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by