Calogic Calendars Security Vulnerabilities and Issues — Calogic Calendars CVE List

Lucene search

CalogicCalogic Calendars

3 matches found

CVE•added 2006/05/24 11:2 p.m.•50 views

CVE-2006-2570

PHP remote file inclusion vulnerability in CaLogic Calendars 1.2.2 allows remote attackers to execute arbitrary PHP code via a URL in the GLOBALS["CLPath"] parameter to (1) reconfig.php and (2) srxclr.php. NOTE: this might be due to a globals overwrite issue.

7.5CVSS7.6AI score0.03079EPSS

CVE•added 2006/01/12 11:0 a.m.•37 views

CVE-2006-0180

Cross-site scripting (XSS) vulnerability in CaLogic Calendars 1.2.2 allows remote attackers to inject arbitrary web script or HTML via the Title field on the "Adding New Event" page, and possibly other vectors, involving iframe tags.

4.3CVSS5.8AI score0.00572EPSS

CVE•added 2008/05/27 2:32 p.m.•31 views

CVE-2008-2444

SQL injection vulnerability in userreg.php in CaLogic Calendars 1.2.2 allows remote attackers to execute arbitrary SQL commands via the langsel parameter.

7.5CVSS8.4AI score0.00378EPSS