Calendarix@0.6.2005-08-30 Security Vulnerabilities and Issues — Calendarix@0.6.2005-08-30 CVE List

Lucene search

Vincent HorCalendarix0.6.2005-08-30

2 matches found

cve•added 2006/04/19 4:6 p.m.•41 views

CVE-2006-1835

Cross-site scripting (XSS) vulnerability in yearcal.php in Calendarix allows remote attackers to inject arbitrary web script or HTML via the ycyear parameter.

2.6CVSS5.6AI score0.007EPSS

cve•added 2006/02/01 2:2 a.m.•38 views

CVE-2006-0492

Multiple SQL injection vulnerabilities in Calendarix allow remote attackers to execute arbitrary SQL commands via (1) the catview parameter in cal_functions.inc.php and (2) the login parameter in cal_login.php. NOTE: the catview vector might overlap CVE-2005-1865.

7.5CVSS8.4AI score0.02041EPSS