Vendor Dictionary: Craig Knudsen

Craig Knudsen

Short Name:	[None Entered]
Previous Names:	[None Entered]
URL:	[None Entered]
Email:	[None Entered]
Security URL:	[None Entered]
Security Email:	[None Entered]
Knowledge Base:	[None Entered]
Notes:	[No Notes]
Full Details...

Vulnerabilities by Vendor Product

Craig Knudsen

Craig Knudsen

WebCalendar: 0.9.44; OSVDB ID: 11609 WebCalendar view_entry.php id Parameter XSS; OSVDB ID: 11610 WebCalendar view_d.php id Parameter XSS; OSVDB ID: 11611 WebCalendar usersel.php form Parameter XSS; OSVDB ID: 11612 WebCalendar datesel.php Multiple Parameter XSS; OSVDB ID: 11613 WebCalendar trailers.php user Parameter XSS; OSVDB ID: 11614 WebCalendar styles.php Multiple Parameter XSS; OSVDB ID: 11615 WebCalendar login.php HTTP Response Splitting; OSVDB ID: 11616 WebCalendar init.php user_inc Variable Arbitrary Command Execution; OSVDB ID: 11617 WebCalendar init.php Crafted Request Path Disclosure; OSVDB ID: 11618 WebCalendar validate.php Path Disclosure; OSVDB ID: 11619 WebCalendar view_entry.php Privilege Escalation; OSVDB ID: 11620 WebCalendar upcoming.php Privilege Escalation; 1.0.1; OSVDB ID: 21217 WebCalendar admin_handler.php Multiple Parameter SQL Injection; OSVDB ID: 21219 WebCalendar export_handler.php Multiple Parameter SQL Injection; OSVDB ID: 21218 WebCalendar edit_template.php template Parameter SQL Injection; OSVDB ID: 21216 WebCalendar activity_log.php startid Parameter SQL Injection; OSVDB ID: 21382 WebCalendar edit_report_handler.php time_range Parameter SQL Injection; OSVDB ID: 19283 WebCalendar functions.php includedir Parameter Remote File Inclusion; OSVDB ID: 25280 WebCalendar Login Error Message User Account Enumeration; 0.x; OSVDB ID: 18954 WebCalendar send_reminders.php includedir Parameter Remote File Inclusion; 1.0.0; OSVDB ID: 19283 WebCalendar functions.php includedir Parameter Remote File Inclusion; OSVDB ID: 18954 WebCalendar send_reminders.php includedir Parameter Remote File Inclusion; 1.0.0 RC1; OSVDB ID: 18954 WebCalendar send_reminders.php includedir Parameter Remote File Inclusion; 1.0.0 RC2; OSVDB ID: 18954 WebCalendar send_reminders.php includedir Parameter Remote File Inclusion; 1.0.0 RC3; OSVDB ID: 18954 WebCalendar send_reminders.php includedir Parameter Remote File Inclusion; 1.1.0-CVS; OSVDB ID: 24526 WebCalendar /includes/init.php Direct Request Path Disclosure; OSVDB ID: 24527 WebCalendar /includes/index.php Direct Request Path Disclosure; OSVDB ID: 24524 WebCalendar /tests/add_duration_test.php Direct Request Path Disclosure; OSVDB ID: 24525 WebCalendar /tests/all_tests.php Direct Request Path Disclosure; OSVDB ID: 24522 WebCalendar groups.php Direct Request Path Disclosure; OSVDB ID: 24523 WebCalendar nonusers.php Direct Request Path Disclosure; OSVDB ID: 24528 WebCalendar /includes/settings.php Direct Request Path Disclosure; OSVDB ID: 24529 WebCalendar /includes/settings.php.orig Direct Request Path Disclosure; OSVDB ID: 24530 WebCalendar /includes/js/admin.php Direct Request Path Disclosure; OSVDB ID: 24531 WebCalendar /includes/js/edit_entry.php Direct Request Path Disclosure; OSVDB ID: 24532 WebCalendar /includes/js/edit_layer.php Direct Request Path Disclosure; OSVDB ID: 24533 WebCalendar /includes/js/export_import.php Direct Request Path Disclosure; OSVDB ID: 24534 WebCalendar /includes/js/popups.php Direct Request Path Disclosure; OSVDB ID: 24535 WebCalendar /includes/js/pref.php Direct Request Path Disclosure; OSVDB ID: 24536 WebCalendar /includes/menu/index.php Direct Request Path Disclosure; 1.0 RC1; OSVDB ID: 19283 WebCalendar functions.php includedir Parameter Remote File Inclusion; 1.0 RC2; OSVDB ID: 19283 WebCalendar functions.php includedir Parameter Remote File Inclusion; 1.0 RC3; OSVDB ID: 19283 WebCalendar functions.php includedir Parameter Remote File Inclusion; 1.0.2; OSVDB ID: 25280 WebCalendar Login Error Message User Account Enumeration; 1.0.3; OSVDB ID: 25842 WebCalendar index.php includedir Function Remote File Inclusion; OSVDB ID: 25280 WebCalendar Login Error Message User Account Enumeration

The database information may change without any notice. Use of the information constitutes acceptance for use in an AS IS condition, and there are NO warranties, implied or otherwise, with regard to this information or its use. Any use of this information is at the user's risk. In no event shall the copyright holder or distributor (OSVDB or OSF) be held liable for any damages whatsoever arising out of or in connection with the use or spread of this information.