Simple Php Agenda » Simple Php Agenda : Security Vulnerabilities, CVEs,
SQL injection vulnerability in engine.php in Simple PHP Agenda 2.2.8 allows remote attackers to execute arbitrary SQL commands via the priority parameter in an addTodo action.
Max CVSS
7.5
EPSS Score
0.17%
Published
2012-05-21
Updated
2017-08-29
Directory traversal vulnerability in index.php in Simple PHP Agenda 2.2.4 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the page parameter.
Max CVSS
7.5
EPSS Score
1.12%
Published
2008-07-07
Updated
2017-10-19
2 vulnerabilities found