what you don't know can hurt you

Register | Login

FilesNewsUsersAuthors

Home Files News &[SERVICES_TAB]About Contact Add New

Showing 1 - 25 of 36

Files

Event Calendar PHP 1.0 Cross Site Scripting

Posted Mar 24, 2012

Authored by 3spi0n

Event Calendar PHP 1.0 suffers from a cross site scripting vulnerability. Version 1.1 fixes this issue.

tags | exploit, php, xss

SHA-256 | da5cb4722a4744a9001176ef2a9c67350d54eb420e64cc3e33a32ea6f03e3c76

Download | Favorite | View

Related Files

Luxcal Event Calendar 3.2.3 Cross Site Request Forgery

Posted Sep 21, 2023

Authored by indoushka

Luxcal Event Calendar version 3.2.3 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf

SHA-256 | 2988b35bb1b22bee81c03c905525b0e5df1206ee53aee901ca3b610f65c28437

Download | Favorite | View

PHP Event Calendar Lite Edition Cross Site Scripting

Posted Nov 5, 2021

Authored by Erik Steltzner, Maurizio Ruchay | Site syss.de

PHP Event Calendar Lite Edition suffers from a persistent cross site scripting vulnerability.

tags | exploit, php, xss

advisories | CVE-2021-42078

SHA-256 | 09c617426974d7713fb8ccab94dcccb7210bc336670db3a9f3be869096871afb

Download | Favorite | View

PHP Event Calendar Lite Edition SQL Injection

Posted Nov 5, 2021

Authored by Erik Steltzner, Maurizio Ruchay | Site syss.de

PHP Event Calendar Lite Edition suffers from a remote SQL injection vulnerability that allows for authentication bypass.

tags | exploit, remote, php, sql injection

advisories | CVE-2021-42077

SHA-256 | 3faf37775ad2f15a9b2f6c16d0cf7e32bcf7f871fe41a4df925d3d66c307459e

Download | Favorite | View

Event Calendar 3.7.4 SQL Injection

Posted Jan 10, 2019

Authored by Ihsan Sencan

Event Calendar version 3.7.4 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection

SHA-256 | 495fe888c07eb7013477dcfecaf314dd577057c69943e17d967e94902954d9dd

Download | Favorite | View

Joomla! CP Event Calendar 3.0.1 SQL Injection

Posted Jan 30, 2018

Authored by Ihsan Sencan

Joomla! CP Event Calendar component version 3.0.1 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection

advisories | CVE-2018-6398

SHA-256 | 74e35677bb968d8e58f9d0e69cd67ad89b951a036914cc794f2e48c09359b1ce

Download | Favorite | View

WordPress Spider Event Calendar 1.5.49 SQL Injection

Posted May 5, 2017

Authored by DefenseCode, Neven Biruski

WordPress Spider Event Calendar plugin versions 1.5.49 and below suffer from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection

SHA-256 | bc548ce1e8c0c072428fe46342994e52caa28f5512161c7553dea228235984ca

Download | Favorite | View

WordPress Spider Event Calendar 1.5.51 Blind SQL Injection

Posted Apr 8, 2017

Authored by Manuel Garcia Cardenas

The WordPress Spider Event Calendar Plugin, prior to 1.5.51 suffers from a blind SQL injection vulnerability due to improper sanitization of an order_by parameter.

tags | exploit, sql injection

SHA-256 | 4454658986b01df7747b115a7789ea51bbfcd5b69c667b6f78c6f281074c4d75

Download | Favorite | View

Event Calendar PHP 1.5 Cross Site Request Forgery

Posted Oct 21, 2016

Authored by Ehsan Hosseini

Event Calendar PHP version 1.5 suffers from a cross site request forgery vulnerability.

tags | exploit, php, csrf

SHA-256 | 5aac80868d176cc81a1785575d3e03c4e3fab542003ebccb48c567d38dd0a5e9

Download | Favorite | View

Event Calendar PHP 1.5 SQL Injection

Posted Oct 21, 2016

Authored by Ehsan Hosseini

Event Calendar PHP version 1.5 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, php, sql injection

SHA-256 | 90cae4bf5c5fd8cc1c2accede370cf72c3ce0cc770fafdaf435dac78861f849f

Download | Favorite | View

Supercali Event Calendar 1.0.8 Cross Site Scripting

Posted Nov 7, 2015

Authored by Tim Coen | Site curesec.com

Supercali Event Calendar version 1.0.8 suffers from a cross site scripting vulnerability.

tags | exploit, xss

SHA-256 | b7f87b7fae3a975307438746f663552bc4767ad8c37d8cc5a98b04797f4a97a5

Download | Favorite | View

Supercali Event Calendar 1.0.8 Cross Site Request Forgery

Posted Nov 7, 2015

Authored by Tim Coen | Site curesec.com

Supercali Event Calendar version 1.0.8 suffers from a cross site request forgery vulnerability.

tags | exploit, csrf

SHA-256 | 1dc543d1bf993df7f695bd2a47520cdafc8bd3a861c0b4fa8c2c88190cb2389d

Download | Favorite | View

Joomla EQ Event Calendar SQL Injection

Posted Jun 8, 2015

Authored by Manish Tanwar

Joomla EQ Event Calendar component suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection

SHA-256 | 76a3371129a71f9cb4b04572956cea23364589c89e791a42bed428d1adccc645

Download | Favorite | View

WordPress PHP Event Calendar 1.5 Arbitrary File Upload

Posted Apr 3, 2015

Authored by CrashBandicot

WordPress PHP Event Calendar plugin version 1.5 suffers from an arbitrary file upload vulnerability.

tags | exploit, arbitrary, php, file upload

SHA-256 | 0c0e6821c9f39d195b058b4a300a86fb947a58cbad45c92060bdd27bb6a0511d

Download | Favorite | View

WordPress CP Multi View Event Calendar 1.01 SQL Injection

Posted Oct 23, 2014

Authored by Claudio Viviani

WordPress CP Multi View Event Calendar plugin version 1.01 suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection

SHA-256 | be7e5bf24575ee60d27163c3c49d5279f14d9efe7157d6083058b2ad90103294

Download | Favorite | View

PHP Event Calendar SQL Injection

Posted Apr 14, 2014

Authored by Daniel Godoy

PHP Event Calendar suffers from a remote SQL injection vulnerability in day_view.php.

tags | exploit, remote, php, sql injection

SHA-256 | f2e5f97ec1c421bce7a7e7d28f1d98f1baf6873f75e6a7451aeb4db0d150ce4e

Download | Favorite | View

Spider Event Calendar 1.3.0 Cross Site Scripting / Path Disclosure / SQL Injection

Posted May 22, 2013

Authored by Janek Vind aka waraxe | Site waraxe.us

Spider Event Calendar version 1.3.0 is a Wordpress plugin that suffers from multiple cross site scripting, path disclosure, and remote SQL injection vulnerabilities.

tags | exploit, remote, vulnerability, xss, sql injection

SHA-256 | e1280c273978d2943c741ebee56c227367b4ac94ad923128afa07f35b1146ed6

Download | Favorite | View

Secunia Security Advisory 49939

Posted Jul 17, 2012

Authored by Secunia | Site secunia.com

Secunia Security Advisory - Vulnerability Lab has reported two vulnerabilities in Event Calendar PHP, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, php, vulnerability, xss

SHA-256 | e9af4da3f018b38df037e17c6767170c0fcee29251e0e4451c034a436e0b508c

Download | Favorite | View

Event Calendar PHP 1.2 Cross Site Scripting / SQL Injection

Posted Jul 16, 2012

Authored by Hubert Wojciechowski, Vulnerability Laboratory | Site vulnerability-lab.com

Event Calendar PHP version 1.2 suffers from cross site scripting and remote SQL injection vulnerabilities.

tags | exploit, remote, php, vulnerability, xss, sql injection

SHA-256 | 3ad4f5c685a677a797142b6d779de69baf513ebfcb1464004b838916e0b78d0f

Download | Favorite | View

WordPress All-In-One Event Calendar 1.4 Cross Site Scripting

Posted Apr 12, 2012

Authored by High-Tech Bridge SA | Site htbridge.com

WordPress All-In-One Event Calendar plugin version 1.4 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss

advisories | CVE-2012-1835

SHA-256 | 3b8eb9270c97fc28a5f090d8f058e8ba0ded6b47444c01a84d736f3dc2552b3e

Download | Favorite | View

Secunia Security Advisory 48539

Posted Mar 27, 2012

Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been reported in Event Calendar PHP, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, php, xss

SHA-256 | 52e564f5d06b57e3926a5e5a7344d354596af34761f379eb57e4a8347e48c78e

Download | Favorite | View

Joomla JE Ajax Event Calendar SQL Injection

Posted Nov 25, 2010

Authored by altbta

The Joomla JE Ajax Event Calendar component suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection

SHA-256 | fd03b696bdb29bd73df3f9ee823b0dbe4d6d4cdd928223c1df82a4068b4523bf

Download | Favorite | View

Joomla JE Event Calendar Local File Inclusion

Posted Jun 29, 2010

Authored by Sid3 effects

The Joomla JE Event Calendar component suffers from a local file inclusion vulnerability.

tags | exploit, local, file inclusion

SHA-256 | 0d11755f06bf19e98abf3d4b3628cd3ff795933dd2264278c4e8717d1bcfe8bf

Download | Favorite | View

PHP Event Calendar 1.5 Cross Site Request Forgery / Cross Site Scripting / Traversal

Posted Jun 25, 2010

Authored by cp77fk4r

PHP Event Calendar versions 1.5 and below suffer from cross site request forgery, cross site scripting and directory traversal vulnerabilities.

tags | exploit, php, vulnerability, xss, file inclusion, csrf

SHA-256 | eb046da8dd523784baf2b2431ce1fef9c52357bd6075171ebcd7fb6729d968bf

Download | Favorite | View

Joomla JE Ajax SQL Injection

Posted Jun 23, 2010

Authored by L0rd CrusAd3r

The Joomla component JE Ajax event calendar suffers from a remote SQL injection vulnerability.

tags | exploit, remote, sql injection

SHA-256 | dfda533b6bfaf39e4cdf023f1acb1006b9b5a8368744ac31744820d4f648dbb5

Download | Favorite | View

Secunia Security Advisory 39836

Posted May 18, 2010

Authored by Secunia | Site secunia.com

Secunia Security Advisory - Valentin Hoebel has reported a vulnerability in the JE Ajax Event Calendar component for Joomla, which can be exploited by malicious people to disclose potentially sensitive information.

tags | advisory

SHA-256 | 37e33f860b81cfbaaf1670026a57ab5c3160f53e31815ffec8f05db44de8a553

Download | Favorite | View