Ltwcalendar@4.2 Security Vulnerabilities and Issues — Ltwcalendar@4.2 CVE List

Lucene search

CodewalkersLtwcalendar4.2

2 matches found

CVE•added 2006/12/02 2:28 a.m.•37 views

CVE-2006-6228

Cross-site scripting (XSS) vulnerability in Codewalkers ltwCalendar (aka PHP Event Calendar) before 4.2.1 allows remote attackers to inject arbitrary HTML or web script via unknown vectors.

6.8CVSS6.1AI score0.00676EPSS

CVE•added 2006/12/02 2:28 a.m.•37 views

CVE-2006-6229

Codewalkers ltwCalendar (aka PHP Event Calendar) before 4.2.1 logs failed passwords, which might allow attackers to infer correct passwords from the log file.

5CVSS6.9AI score0.00343EPSS