VYPR

Web Calendar Pro

by Mitridat

CVEs (2)

  • CVE-2006-0835Feb 22, 2006
    risk 0.03cvss epss 0.01

    SQL injection vulnerability in dropbase.php in MitriDAT Web Calendar Pro allows remote attackers to modify internal SQL queries and cause a denial of service (inaccessible database) via the tabls parameter.

  • CVE-2025-25223Feb 18, 2025
    risk 0.00cvss epss 0.01

    The LuxCal Web Calendar prior to 5.3.3M (MySQL version) and prior to 5.3.3L (SQLite version) contains a path traversal vulnerability in dloader.php. If this vulnerability is exploited, arbitrary files on a server may be obtained.