Extcalendar

extcalendar

2 CVEs • 1 product

Products (1)

Click to collapse

Toggle

Extcalendar

extcalendar

2 CVEs

CVEs (2)

CVE VENDORS PRODUCTS UPDATED PUBLISHED CVSS
CVE-2006-3556 1Extcalendar 1Extcalendar Apr 16, 2026 Jul 13, 2006 N/A· v4 N/A· v3 6.8 MEDIUM· v2 PHP remote file inclusion vulnerability in extcalendar.php in Mohamed Moujami ExtCalendar 2.0 allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.
CVE-2006-1336 1Extcalendar 1Extcalendar Apr 16, 2026 Mar 21, 2006 N/A· v4 N/A· v3 5.0 MEDIUM· v2 Cross-site scripting vulnerability in calendar.php in ExtCalendar 1.0 and possibly other versions before 2.0 allows remote attackers to inject arbitrary web script or HTML via the (1) year, (2) month, (3) next, and (4) p...Show more Cross-site scripting vulnerability in calendar.php in ExtCalendar 1.0 and possibly other versions before 2.0 allows remote attackers to inject arbitrary web script or HTML via the (1) year, (2) month, (3) next, and (4) prev parameters.Show less

CVE

VENDORS

PRODUCTS

UPDATED

PUBLISHED

CVSS

CVE-2006-3556

1Extcalendar

Apr 16, 2026

Jul 13, 2006

N/A· v4

N/A· v3

6.8 MEDIUM· v2

PHP remote file inclusion vulnerability in extcalendar.php in Mohamed Moujami ExtCalendar 2.0 allows remote attackers to execute arbitrary PHP code via a URL in the mosConfig_absolute_path parameter.

CVE-2006-1336

1Extcalendar

Apr 16, 2026

Mar 21, 2006

N/A· v4

N/A· v3

5.0 MEDIUM· v2

Cross-site scripting vulnerability in calendar.php in ExtCalendar 1.0 and possibly other versions before 2.0 allows remote attackers to inject arbitrary web script or HTML via the (1) year, (2) month, (3) next, and (4) p...Show more