Filtered by vendor A4desk
Subscribe
Total
2 CVE
CVE | Vendors | Products | Updated | CVSS v2 | CVSS v3 |
---|---|---|---|---|---|
CVE-2008-6103 | 1 A4desk | 1 A4desk Flash Event Calendar | 2017-08-07 | 6.8 MEDIUM | N/A |
PHP remote file inclusion vulnerability in index.php in A4Desk Event Calendar, when magic_quotes_gpc is disabled, allows remote attackers to execute arbitrary PHP code via a URL in the v parameter. | |||||
CVE-2008-6104 | 1 A4desk | 1 A4desk Flash Event Calendar | 2009-02-25 | 7.5 HIGH | N/A |
SQL injection vulnerability in A4Desk PHP Event Calendar allows remote attackers to execute arbitrary SQL commands via the eventid parameter to admin/index.php. |