Vulnerabilities > Vincent HOR > Calendarix Advanced

DATE CVE VULNERABILITY TITLE RISK
2006-04-19 CVE-2006-1835 Cross-Site Scripting vulnerability in Calendarix YearCal.PHP
Cross-site scripting (XSS) vulnerability in yearcal.php in Calendarix allows remote attackers to inject arbitrary web script or HTML via the ycyear parameter.
network
high complexity
vincent-hor
2.6
2.6
2005-06-09 CVE-2005-1864 Remote Security vulnerability in Vincent HOR Calendarix Advanced 1.5
PHP remote file inclusion vulnerability in cal_admintop.php in Calendarix Advanced 1.5 allows remote attackers to execute arbitrary PHP code via the calpath parameter.
network
low complexity
vincent-hor
5.0
5.0
2005-05-31 CVE-2005-1866 Cross-Site Scripting vulnerability in Vincent HOR Calendarix Advanced 1.5
Cross-site scripting (XSS) vulnerability in calendar.php in Calendarix Advanced 1.5 allows remote attackers to inject arbitrary web script or HTML via the year parameter.
network
vincent-hor
4.3
4.3