EUVD-2006-2795

Malware in sbrugna...

EUVD-2005-2880

Malware in sbrugna...

EUVD-2005-2882

Malware in sbrugna...

EUVD-2005-2881

Malware in sbrugna...

EUVD-2006-2794

Malware in sbrugna...

phpCommunityCalendar <= 4.0.3 - Multiple (XSS/SQL) Vulnerabilities

No description provided by source. phpCommunityCalendar 4.0.3 Multiple Vulnerabilites author : X0r1 release : 23.05.06 software : http://www.appideas.com/ googledork : Calendar progr...

PHPCommunityCalendar 4.0 - Multiple SQL Injection Vulnerabilities

No description provided by source. source: http://www.securityfocus.com/bid/14763/info phpCommunityCalendar is prone to multiple SQL injection vulnerabilities. These issues are due to a lack of proper sanitization of user-supplied input before being used in SQL queries. Successful exploitation...

Sql injection

Multiple SQL injection vulnerabilities in phpCommunityCalendar 4.0.3 allow remote attackers to execute arbitrary SQL commands via the 1 CalendarDetailsID parameter in a month.php, b day.php, and c delCalendar.php; 2 ID parameter in d event.php; 3 AdminUserID parameter in e delAdmin.php; 4...

CVE-2006-2797

Multiple SQL injection vulnerabilities in phpCommunityCalendar 4.0.3 allow remote attackers to execute arbitrary SQL commands via the 1 CalendarDetailsID parameter in a month.php, b day.php, and c delCalendar.php; 2 ID parameter in d event.php; 3 AdminUserID parameter in e delAdmin.php; 4...

CVE-2006-2797

Multiple SQL injection vulnerabilities in phpCommunityCalendar 4.0.3 allow remote attackers to execute arbitrary SQL commands via the 1 CalendarDetailsID parameter in a month.php, b day.php, and c delCalendar.php; 2 ID parameter in d event.php; 3 AdminUserID parameter in e delAdmin.php; 4...

CVE-2006-2798

Multiple cross-site scripting XSS vulnerabilities in phpCommunityCalendar 4.0.3 allow remote attackers to inject arbitrary web script or HTML via the 1 LoName parameter in a week.php and b month.php and 2 AddressLink parameter in c event.php...

CVE-2006-2798

CVE-2006-2798 involves multiple cross-site scripting (XSS) vulnerabilities in phpCommunityCalendar 4.0.3. The flaws allow remote attackers to inject arbitrary script/HTML via the LoName parameter in week.php and month.php, and via the AddressLink parameter in event.php. The NVD entry lists a base...

CVE-2006-2797

Multiple SQL injection vulnerabilities in phpCommunityCalendar 4.0.3 allow remote attackers to inject arbitrary SQL via parameters in month.php, day.php, delCalendar.php, event.php, delAdmin.php, delAddress.php, and delCategory.php. Root cause: unsafely constructed SQL queries; affected component...

phpCommunityCalendar &lt;= 4.0.3 Multiple (XSS/SQL) Vulnerabilities

No description provided by source. phpCommunityCalendar 4.0.3 Multiple Vulnerabilites author : X0r1 release : 23.05.06 software : http://www.appideas.com/ googledork : "Calendar programming by AppIdeas.com" filetype:php XSS: http://SERVER/PA...

phpCommunityCalendar 4.0.3 - Cross-Site Scripting SQL Injection

phpCommunityCalendar 4.0.3 - Cross-Site Scripting SQL Injection author : X0r1 release : 23.05.06 software : http://www.appideas.com/ googledork : "Calendar programming by AppIdeas.com" filetype:php XSS: http://SERVER/PATH/week.php?LoName=alert'XSS' http://SERVER/PATH/month.php?LoName=alert'XSS'...

phpCommunityCalendar <= 4.0.3 Multiple (XSS/SQL) Vulnerabilities

Exploit for unknown platform in category web applications ================================================================ phpCommunityCalendar author : X0r1 release : 23.05.06 software : http://www.appideas.com/ googledork : "Calendar programming by AppIdeas.com" filetype:php XSS:...

phpCommunityCalendar 4.0.3 Multiple Vulnerabilites

phpCommunityCalendar 4.0.3 Multiple Vulnerabilites author : X0r1 release : 23.05.06 software : http://www.appideas.com/ googledork : "Calendar programming by AppIdeas.com" filetype:php XSS: http://SERVER/PATH/week.php?LoName=scriptalert'XSS'&lt...

phpCommunityCalendar 4.0.3 - Cross-Site Scripting / SQL Injection

author : X0r1 release : 23.05.06 software : http://www.appideas.com/ googledork : "Calendar programming by AppIdeas.com" filetype:php XSS: http://SERVER/PATH/week.php?LoName=alert'XSS' http://SERVER/PATH/month.php?LoName=alert'XSS' http://SERVER/PATH/event.php?AddressLink="alert'XSS'" SQL...

CVE-2005-2881

phpCommunityCalendar 4.0.3 allows remote attackers to bypass authentication and gain unauthorized access via a direct request to the admin directory...

CVE-2005-2882

Multiple cross-site scripting XSS vulnerabilities in phpCommunityCalendar 4.0.3, and possibly earlier versions, allow remote attackers to inject arbitrary web script or HTML via the LocationID parameter to 1 thankyou.php or 2 day.php, font parameter to 3 calDaily.php, 4 calMonthly.php, 5...