Harmistechnology » Com Jeajaxeventcalendar : Security Vulnerabilities, CVEs,
SQL injection vulnerability in JE Ajax Event Calendar (com_jeajaxeventcalendar) component for Joomla! allows remote attackers to execute arbitrary SQL commands via the event_id parameter in an alleventlist_more action to index.php.
Max CVSS
7.5
EPSS Score
0.16%
Published
2010-12-01
Updated
2010-12-02
SQL injection vulnerability in the JE Ajax Event Calendar (com_jeajaxeventcalendar) component 1.0.5 for Joomla! allows remote attackers to execute arbitrary SQL commands via the view parameter to index.php.
Max CVSS
7.5
EPSS Score
0.17%
Published
2010-06-28
Updated
2010-06-29
Directory traversal vulnerability in the JE Ajax Event Calendar (com_jeajaxeventcalendar) component 1.0.1 and 1.0.3 for Joomla! allows remote attackers to read arbitrary files via a .. (dot dot) in the view parameter to index.php. NOTE: some of these details are obtained from third party information.
Max CVSS
6.8
EPSS Score
1.82%
Published
2010-06-01
Updated
2017-08-17
3 vulnerabilities found