what you don't know can hurt you
Showing 1 - 25 of 46 RSS Feed

Files

WebCalendar 1.2.4 Pre-Auth Remote Code Injection
Posted Apr 30, 2012
Authored by EgiX, sinn3r | Site metasploit.com

This Metasploit modules exploits a vulnerability found in WebCalendar versions 1.2.4 and below. If not removed, the settings.php script meant for installation can be updated by an attacker with injected code. This allows arbitrary code execution as www-data.

tags | exploit, arbitrary, php, code execution
advisories | CVE-2012-1495
MD5 | a55191dbaa9e44a1c3c9352259ba3d7f

Related Files

WebCalendar 1.2.7 CSRF Bypass
Posted Jul 4, 2016
Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

WebCalendar version 1.2.7 attempts to uses the HTTP Referer to check that requests are originating from same server. However, this can be easily defeated by just not sending a referer.

tags | exploit, web
MD5 | 5dd9afc63a66090cf2397fa3260ae490
WebCalendar 1.2.7 PHP Code Injection
Posted Jul 4, 2016
Authored by hyp3rlinx | Site hyp3rlinx.altervista.org

WebCalendar version 1.2.7 suffers from a PHP code injection vulnerability.

tags | exploit, php
MD5 | fd0efa8c43bb185a42ccf95e305e34a2
WebCalendar 1.2.4 Remote Code Execution
Posted Apr 30, 2012
Authored by EgiX

WebCalendar versions 1.2.4 and below suffer from a remote code execution vulnerability.

tags | exploit, remote, code execution
advisories | CVE-2012-1495, CVE-2012-1496
MD5 | 5f262ed03724a9203109c2bb48d3886f
Secunia Security Advisory 48906
Posted Apr 24, 2012
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Egidio Romano has discovered a vulnerability in WebCalendar, which can be exploited by malicious users to disclose sensitive information.

tags | advisory
MD5 | e89b5b9ec86eab20257938dfcb8a4f35
Webcalendar 1.2.4 Cross Site Scripting
Posted Jan 21, 2012
Authored by G13

Webcalendar version 1.2.4 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 55952a8d08c1bcde1a5019bd8dd65b78
WebCalendar CVS 1.2 Cross Site Request Forgery
Posted Aug 9, 2011
Authored by KedAns-Dz

WebCalendar CVS version 1.2 suffers from multiple cross site request forgery vulnerabilities.

tags | exploit, vulnerability, csrf
MD5 | 612eb1e1148e71f7bc5510bec45a888a
WebCalendar 1.2.3 Cross Site Scripting
Posted Jul 5, 2011
Authored by Stefan Schurtz

WebCalendar version 1.2.3 suffers from multiple cross site scripting vulnerabilities.

tags | exploit, vulnerability, xss
MD5 | 721deb6d68e05605b2762e6ce1bc777c
WebCalendar 1.2.3 Cross Site Scripting
Posted Apr 12, 2011
Authored by High-Tech Bridge SA | Site htbridge.com

WebCalendar version 1.2.3 suffers from a cross site scripting vulnerability.

tags | exploit, xss
MD5 | 47cf4172aedcbf039c9b8be836b0f62b
Secunia Security Advisory 44024
Posted Apr 5, 2011
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Matt Jezorek has discovered multiple vulnerabilities in WebCalendar, which can be exploited by malicious users to conduct script insertion attacks.

tags | advisory, vulnerability
MD5 | a57d8bd3177a0c333c54db0d3fd3be45
Secunia Security Advisory 38222
Posted Feb 3, 2010
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Russ McRee has discovered some vulnerabilities in WebCalendar, which can be exploited by malicious people to conduct cross-site scripting and request forgery attacks.

tags | advisory, vulnerability, xss
MD5 | fb977672d0cdc79a25b780318ba4e1b7
WEB Calendar Database Disclosure
Posted Dec 30, 2009
Authored by RENO

WEB Calendar suffers from a remote database disclosure vulnerability.

tags | exploit, remote, web, info disclosure
MD5 | d2cb9c75aaceb8e3a08121ccbc086536
Secunia Security Advisory 35905
Posted Jul 21, 2009
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Septemb0x has reported a vulnerability in EzWebCalendar, which can be exploited by malicious users to compromise a vulnerable system.

tags | advisory
MD5 | 52ef2191fed7b8b6ea1de5604d656c85
aspWebCalendar Free Edition Database Disclosure
Posted Apr 1, 2009
Authored by Joseph Giron

aspWebCalendar Free Edition suffers from a database disclosure vulnerability.

tags | exploit, info disclosure
MD5 | 2174c5fa47aa2ecbba718251812fa84d
webcal104-rfi.txt
Posted Jun 18, 2008
Authored by Cr@zy_King

WebCalendar version 1.0.4 suffers from a remote file inclusion vulnerability in send_reminders.php.

tags | exploit, remote, php, code execution, file inclusion
MD5 | eea29a82f1bd14d1547c5107143085b2
aspwebcal-upload.txt
Posted Jun 18, 2008
Authored by Alemin Krali

AspWebCalendar 2008 suffers from a remote file upload vulnerability.

tags | exploit, remote, file upload
MD5 | 7d742acbc46a5bdb9c29343b0295944e
Debian Linux Security Advisory 1279-1
Posted Apr 24, 2007
Authored by Debian | Site debian.org

Debian Security Advisory 1279-1 - It was discovered that WebCalendar, a PHP-based calendar application, performs insufficient sanitizing in the exports handler, which allows injection of web script.

tags | advisory, web, php
systems | linux, debian
advisories | CVE-2006-6669
MD5 | b5951da89d3b7a7ca2871e83f381a17a
Secunia Security Advisory 24974
Posted Apr 23, 2007
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Debian has issued an update for webcalendar. This fixes a vulnerability, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
systems | linux, debian
MD5 | 9b54814a4fb93793a0351c899bf7da1d
aspwebcal-sql.txt
Posted Mar 24, 2007
Authored by parad0x | Site p4r4d0x.com

aspWebCalendar version 4.5 suffers from a SQL injection vulnerability in calendar.asp.

tags | exploit, sql injection, asp
MD5 | ad7ef9b60b75f9cd24de6e8bdf6066c2
Secunia Security Advisory 24622
Posted Mar 23, 2007
Authored by Secunia | Site secunia.com

Secunia Security Advisory - parad0x has reported a vulnerability in aspWebCalendar FREE, which can be exploited by malicious people to conduct SQL injection attacks.

tags | advisory, sql injection
MD5 | be1e19e7a915957260046b969abfc15a
Debian Linux Security Advisory 1267-1
Posted Mar 20, 2007
Authored by Debian | Site debian.org

Debian Security Advisory 1267-1 - It was discovered that WebCalendar, a PHP-based calendar application, insufficiently protects an internal variable, which allows remote file inclusion.

tags | advisory, remote, php, file inclusion
systems | linux, debian
advisories | CVE-2007-1343
MD5 | bb55eb5cfc33fa297c1418b6d5dd3764
webcal-rfi.txt
Posted Mar 20, 2007
Authored by Drackanz

WebCalendar version 0.9.45 suffers from a remote file inclusion vulnerability in login.php.

tags | exploit, remote, php, code execution, file inclusion
MD5 | ac3da074b5f2488bdcd42054e6154088
Secunia Security Advisory 24519
Posted Mar 17, 2007
Authored by Secunia | Site secunia.com

Secunia Security Advisory - Debian has issued an update for webcalendar. This fixes a vulnerability, which can be exploited by malicious people to compromise a vulnerable system.

tags | advisory
systems | linux, debian
MD5 | ac25137ef5163d71f8643d309d708f1c
Secunia Security Advisory 24403
Posted Mar 8, 2007
Authored by Secunia | Site secunia.com

Secunia Security Advisory - A vulnerability has been discovered in WebCalendar, which can be exploited by malicious people to compromise a vulnerable system.

tags | advisory
MD5 | 27e5c79fc254119a3abeb217ef23f0a4
webcal10-xss.txt
Posted Dec 21, 2006
Authored by 7all

WebCalendar version 1.0 suffers from a cross site scripting flaw.

tags | exploit, xss
MD5 | 18e2030afb9d31e09ec2f5c021f09660
Secunia Security Advisory 23341
Posted Dec 19, 2006
Authored by Secunia | Site secunia.com

Secunia Security Advisory - 7all has discovered a vulnerability in WebCalendar, which can be exploited by malicious people to conduct cross-site scripting attacks.

tags | advisory, xss
MD5 | 57d4890b5351b4aad10f40c24308143f
Page 1 of 2
Back12Next

File Archive:

November 2021

  • Su
  • Mo
  • Tu
  • We
  • Th
  • Fr
  • Sa
  • 1
    Nov 1st
    19 Files
  • 2
    Nov 2nd
    25 Files
  • 3
    Nov 3rd
    8 Files
  • 4
    Nov 4th
    7 Files
  • 5
    Nov 5th
    24 Files
  • 6
    Nov 6th
    0 Files
  • 7
    Nov 7th
    0 Files
  • 8
    Nov 8th
    18 Files
  • 9
    Nov 9th
    9 Files
  • 10
    Nov 10th
    106 Files
  • 11
    Nov 11th
    19 Files
  • 12
    Nov 12th
    13 Files
  • 13
    Nov 13th
    0 Files
  • 14
    Nov 14th
    0 Files
  • 15
    Nov 15th
    18 Files
  • 16
    Nov 16th
    12 Files
  • 17
    Nov 17th
    15 Files
  • 18
    Nov 18th
    12 Files
  • 19
    Nov 19th
    4 Files
  • 20
    Nov 20th
    2 Files
  • 21
    Nov 21st
    0 Files
  • 22
    Nov 22nd
    22 Files
  • 23
    Nov 23rd
    14 Files
  • 24
    Nov 24th
    19 Files
  • 25
    Nov 25th
    4 Files
  • 26
    Nov 26th
    1 Files
  • 27
    Nov 27th
    4 Files
  • 28
    Nov 28th
    0 Files
  • 29
    Nov 29th
    0 Files
  • 30
    Nov 30th
    0 Files

Top Authors In Last 30 Days

File Tags

Systems

packet storm

© 2020 Packet Storm. All rights reserved.

Services
Security Services
Hosting By
Rokasec
close