Secunia Security Advisory - Two vulnerabilities have been reported in Calendar Express, which can be exploited by malicious people to conduct SQL injection or cross-site scripting attacks.
973ec89c9581f1d4ecbcd146e3de2cd5ff0afac147109e36a4468edfe879ebc3