Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
prionPRIOn knowledge basePRION:CVE-2007-3627
HistoryJul 09, 2007 - 4:30 p.m.

Sql injection

2007-07-0916:30:00
PRIOn knowledge base
www.prio-n.com
2

8.6 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

60.5%

JSON

Multiple SQL injection vulnerabilities in PHP Lite Calendar Express 2.2 allow remote attackers to execute arbitrary SQL commands via the cid parameter to (1) login.php, (2) auth.php, and (3) subscribe.php. NOTE: the month.php, year.php, week.php, and day.php vectors are already covered by CVE-2005-4009. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

CPENameOperatorVersion
calendar_expresseq2.2

Related

cvelist 3
nvd 3
cve 3
nessus 1
openvas 2
prion 1
cvelist
cvelist
CVE-2007-3627
2022-10-03 16:14:21
CVE-2005-4009
2005-12-05 11:00:00
CVE-2006-2973
2006-06-12 22:00:00
nvd
nvd
CVE-2007-3627
2007-07-09 16:30:00
CVE-2005-4009
2005-12-05 11:03:00
CVE-2006-2973
2006-06-12 22:02:00
cve
cve
CVE-2007-3627
2022-10-03 16:14:21
CVE-2005-4009
2005-12-05 11:03:00
CVE-2006-2973
2006-06-12 22:02:00
nessus
nessus
Calendar Express Multiple Vulnerabilities (SQLi, XSS)
2005-09-19 00:00:00
openvas
openvas
Calendar Express Multiple Flaws
2006-03-26 00:00:00
Calendar Express Multiple Flaws
2006-03-26 00:00:00
prion
prion
Sql injection
2006-06-12 22:02:00

8.6 High

AI Score

Confidence

Low

0.002 Low

EPSS

Percentile

60.5%

JSON
Related for PRION:CVE-2007-3627
cvelist3nvd3cve3nessus1openvas2prion1