Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
Simple Php AgendaSimple Php Agenda

2 matches found

CVE
CVEadded 2012/05/21 10:0 p.m.48 views

CVE-2012-2925

The CVE-2012-2925 entry concerns a SQL injection in engine.php of Simple PHP Agenda 2.2.8, exploitable via the priority parameter in addTodo. The root cause is unsanitized/concatenated input used in SQL queries, enabling remote attackers to execute arbitrary SQL commands. Affected software: Simpl...

7.5CVSS8.8AI score0.00966EPSS
CVE
CVEadded 2008/07/07 6:20 p.m.46 views

CVE-2008-3031

CVE-2008-3031 affects Simple PHP Agenda 2.2.4 and earlier. A directory traversal vulnerability in index.php allows remote attackers to include and execute arbitrary local files by supplying a ".." in the page parameter. This is the underlying cause and the documented impact is arbitrary local fil...

7.5CVSS7.2AI score0.0383EPSS