Vulnerabilities (CVE)

Filtered by vendor Simple Php Agenda Subscribe
Filtered by product Simple Php Agenda
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2012-2925 1 Simple Php Agenda 1 Simple Php Agenda 2024-02-28 7.5 HIGH N/A
SQL injection vulnerability in engine.php in Simple PHP Agenda 2.2.8 allows remote attackers to execute arbitrary SQL commands via the priority parameter in an addTodo action.
CVE-2008-3031 1 Simple Php Agenda 1 Simple Php Agenda 2024-02-28 7.5 HIGH N/A
Directory traversal vulnerability in index.php in Simple PHP Agenda 2.2.4 and earlier allows remote attackers to include and execute arbitrary local files via a .. (dot dot) in the page parameter.