Smolinari Mini Web Calendar vulnerabilities
2 known vulnerabilities affecting smolinari/mini_web_calendar.
Total CVEs
2
CISA KEV
0
Public exploits
2
Exploited in wild
0
Severity breakdown
MEDIUM2
Vulnerabilities
Page 1 of 1
CVE-2008-5062P3MEDIUMCVSS 5.0PoCv1.22008-11-13
CVE-2008-5062 [MEDIUM] CWE-22 CVE-2008-5062: Directory traversal vulnerability in php/cal_pdf.php in Mini Web Calendar (mwcal) 1.2 allows remote
Directory traversal vulnerability in php/cal_pdf.php in Mini Web Calendar (mwcal) 1.2 allows remote attackers to read arbitrary files via directory traversal sequences in the thefile parameter.
nvd
CVE-2008-5061P4MEDIUMCVSS 4.3PoCv1.22008-11-13
CVE-2008-5061 [MEDIUM] CWE-79 CVE-2008-5061: Cross-site scripting (XSS) vulnerability in php/cal_default.php in Mini Web Calendar (mwcal) 1.2 all
Cross-site scripting (XSS) vulnerability in php/cal_default.php in Mini Web Calendar (mwcal) 1.2 allows remote attackers to inject arbitrary web script or HTML via the URL.
nvd