Vulnerabilities > Vincent HOR > Calendarix Advanced
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2006-04-19 | CVE-2006-1835 | Cross-Site Scripting vulnerability in Calendarix YearCal.PHP Cross-site scripting (XSS) vulnerability in yearcal.php in Calendarix allows remote attackers to inject arbitrary web script or HTML via the ycyear parameter. | 2.6 |
2005-06-09 | CVE-2005-1864 | Remote Security vulnerability in Vincent HOR Calendarix Advanced 1.5 PHP remote file inclusion vulnerability in cal_admintop.php in Calendarix Advanced 1.5 allows remote attackers to execute arbitrary PHP code via the calpath parameter. | 5.0 |
2005-05-31 | CVE-2005-1866 | Cross-Site Scripting vulnerability in Vincent HOR Calendarix Advanced 1.5 Cross-site scripting (XSS) vulnerability in calendar.php in Calendarix Advanced 1.5 allows remote attackers to inject arbitrary web script or HTML via the year parameter. network vincent-hor | 4.3 |