Every CVE whose affected-product data names Php-calendar, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (6)
CVE-2004-1423 — CVSS 7.5 (high): Multiple PHP remote file inclusion vulnerabilities in Sean Proctor PHP-Calendar before 0.10.1, as used in Commonwealth of Massachusetts…
CVE-2005-1397 — CVSS 7.5 (high): SQL injection vulnerability in search.php for PHP-Calendar before 0.10.3 allows remote attackers to execute arbitrary SQL commands via…
CVE-2009-3702 — CVSS 7.5 (high): Multiple absolute path traversal vulnerabilities in PHP-Calendar 1.1 allow remote attackers to include and execute arbitrary local files…
CVE-2017-6485 — CVSS 6.1 (medium): A Cross-Site Scripting (XSS) issue was discovered in php-calendar before 2017-03-03. The vulnerability exists due to insufficient…
CVE-2010-2041 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in index.php in PHP-Calendar before 2.0 Beta7 allow remote attackers to inject…
CVE-2022-4455 — CVSS 3.5 (low): A vulnerability was identified in sproctor php-calendar up to 2.0.13. This impacts an unknown function of the file index.php. Such…