Vulnerabilities (CVE)

Filtered by vendor Vincent Hor Subscribe
Filtered by product Calendarix Basic
Total 1 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2006-3094 1 Vincent Hor 1 Calendarix Basic 2024-11-21 5.1 MEDIUM N/A
Multiple SQL injection vulnerabilities in Calendarix Basic 0.7.20060401 and earlier, with magic_quotes_gpc disabled, allow remote attackers to execute arbitrary SQL commands via the id parameter in (1) cal_event.php and (2) cal_popup.php.