Shodan
Vulnerabilities
Vulnerable Software
Phpcommunitycalendar:  >> Phpcommunitycalendar  >> 4.0.1  Security Vulnerabilities
CVE-2005-2880
Multiple SQL injection vulnerabilities in phpCommunityCalendar 4.0.3, and possibly earlier versions, allow remote attackers to execute arbitrary SQL commands via the (1) login field in login.php or (2) LocationID parameter to week.php.
CVSS Score
7.5
EPSS Score
0.008
Published
2005-09-14
CVE-2005-2882
Multiple cross-site scripting (XSS) vulnerabilities in phpCommunityCalendar 4.0.3, and possibly earlier versions, allow remote attackers to inject arbitrary web script or HTML via the LocationID parameter to (1) thankyou.php or (2) day.php, font parameter to (3) calDaily.php, (4) calMonthly.php, (5) calMonthlyP.php, (6) calWeekly.php, (7) calWeeklyP.php, (8) calYearly.php, (9) calYearlyP.php, (10) day.php, or (11) week.php, or (12) CeTi, (13) Contact, (14) Description, (15) ShowAddress parameter to event.php, and other attack vectors.
CVSS Score
4.3
EPSS Score
0.006
Published
2005-09-14


Products
Pricing
Contact Us

Shodan ® - All rights reserved