12 matches found
EUVD-2005-3365
Malware in sbrugna...
moodle.sgul.ac.uk XSS vulnerability
Vulnerable URL: https://moodle.sgul.ac.uk/phpicalendar/search.php?cpath=cycle1=MBBS5Year1=20171001=asd%22%27%20Style=position:fixed;top:0;left:0;font-size:999px;%20OnMouseEnter=confirm1%20//&submit.x;=0&submit.y;=0 Details: Description| Value ---|--- Patched:| Verification in progress Latest chec...
research.bmap.ucla.edu XSS vulnerability
Vulnerable URL: http://research.bmap.ucla.edu/Schedules/phpicalendar/search.php?cal=allcalendarscombined971=20170117=%22+onfocus%3D%22alert%28%2FXSSPOSED%2F%29%22+autofocus%3D%22&submit.x;=0&submit.y;=0 Details: Description| Value ---|--- Patched:| No Latest check for patch:| 28.07.2017...
CVE-2008-5968
Directory traversal vulnerability in print.php in PHP iCalendar 2.24 and earlier allows remote attackers to include and execute arbitrary local files via a .. dot dot in the cookielanguage parameter in a phpicalendar cookie, a different vector than CVE-2006-1292...
FreeBSD Ports: phpicalendar
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
FreeBSD Ports: phpicalendar
The remote host is missing an update to the system as announced in the referenced advisory. SPDX-FileCopyrightText: 2008 E-Soft Inc. Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only...
FreeBSD Ports: phpicalendar
The remote host is missing an update to the system as announced in the referenced advisory. VID f1f163ce-9e09-11da-b410-000e0c2e438a OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
FreeBSD Ports: phpicalendar
The remote host is missing an update to the system as announced in the referenced advisory. VID 12f9d9e9-9e1e-11da-b410-000e0c2e438a OpenVAS Vulnerability Test $ Description: Auto generated from vuxml or freebsd advisories Authors: Thomas Reinke Copyright: Copyright c 2008 E-Soft Inc...
FreeBSD : phpicalendar -- XSS vulnerability (12f9d9e9-9e1e-11da-b410-000e0c2e438a)
Francesco Ongaro reports that phpicalendar is vulnerable for a cross site scripting attack. The vulnerability is caused by improper validation of the index.php file allowing attackers to include an arbitrary file with the .php extension %NASLMINLEVEL 70300 C Tenable Network Security, Inc. The...
FreeBSD : phpicalendar -- file disclosure vulnerability (f1f163ce-9e09-11da-b410-000e0c2e438a)
The phpicalendar team reports that there is an unspecified vulnerability within phpicalendar. This seems to be a file disclosure vulnerability caused by improper checking of the template parsing function. This would allow an attacker to disclose any file readable by the user under which the...
phpicalendar -- file disclosure vulnerability
The phpicalendar team reports that there is an unspecified vulnerability within phpicalendar. This seems to be a file disclosure vulnerability caused by improper checking of the template parsing function. This would allow an attacker to disclose any file readable by the user under which the...
phpicalendar -- cross site scripting vulnerability
Francesco Ongaro reports that phpicalendar is vulnerable for a cross site scripting attack. The vulnerability is caused by improper validation of the index.php file allowing attackers to include an arbitrary file with the .php extension...