Vincent Hor Calendarix — known CVE vulnerabilities
Every CVE whose affected-product data names Vincent Hor Calendarix, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (7)
CVE-2006-4135 — CVSS 7.5 (high): PHP remote file inclusion vulnerability in cal_config.inc.php in Calendarix 0.7.20060401 and earlier allows remote attackers to execute…
CVE-2006-0492 — CVSS 7.5 (high): Multiple SQL injection vulnerabilities in Calendarix allow remote attackers to execute arbitrary SQL commands via (1) the catview parameter…
CVE-2007-3183 — CVSS 6.8 (medium): Multiple SQL injection vulnerabilities in Calendarix 0.7.20070307, when magic_quotes_gpc is disabled, allow remote attackers to execute…
CVE-2007-3258 — CVSS 5.0 (medium): calendar.php in Calendarix 0.7.20070307 allows remote attackers to obtain sensitive information via large values to the (1) year and (2)…
CVE-2007-3259 — CVSS 5.0 (medium): Calendarix 0.7.20070307 allows remote attackers to obtain sensitive information via (1) an invalid month[] parameter to calendar.php, (2)…
CVE-2007-3182 — CVSS 4.3 (medium): Multiple cross-site scripting (XSS) vulnerabilities in Calendarix 0.7.20070307, when register_globals is enabled, allow remote attackers to…
CVE-2006-1835 — CVSS 2.6 (low): Cross-site scripting (XSS) vulnerability in yearcal.php in Calendarix allows remote attackers to inject arbitrary web script or HTML via…