Bosdates@4.0 Security Vulnerabilities and Issues — Bosdates@4.0 CVE List

Lucene search

BosdevBosdates4.0

3 matches found

CVE•added 2005/11/30 11:3 a.m.•41 views

CVE-2005-3911

Multiple SQL injection vulnerabilities in calendar.php in BosDates 4.0 and earlier allow remote attackers to execute arbitrary SQL commands via the (1) year and (2) category parameters.

7.5CVSS8.9AI score0.00421EPSS

CVE•added 2006/08/01 9:4 p.m.•32 views

CVE-2006-3957

PHP remote file inclusion vulnerability in payment.php in BosDev BosDates allows remote attackers to execute arbitrary PHP code via a URL in the insPath parameter.

7.5CVSS7.9AI score0.02067EPSS

CVE•added 2008/03/08 12:44 a.m.•30 views

CVE-2008-1211

Cross-site scripting (XSS) vulnerability in BosDates 3.x and 4.x allows remote attackers to inject arbitrary web script or HTML via (1) the type parameter in calendar.php and (2) the category parameter in calendar_search.php. NOTE: the provenance of this information is unknown; the details are obta...

4.3CVSS5.6AI score0.00296EPSS