Inforest Communications » Supercali : Security Vulnerabilities, CVEs,
A reflected cross-site scripting (XSS) vulnerability exists in SuperCali version 1.1.0, allowing remote attackers to execute arbitrary JavaScript code via the email parameter in the bad_password.php page.
Max CVSS
N/A
EPSS Score
0.04%
Published
2024-03-05
Updated
2024-03-05
SQL injection vulnerability in index.php in SuperCali PHP Event Calendar 0.4.0 allows remote attackers to execute arbitrary SQL commands via the o parameter.
Max CVSS
7.5
EPSS Score
0.80%
Published
2007-07-05
Updated
2017-09-29
2 vulnerabilities found