Summary
The remote host is running Corporate Calendar, an ASP script to manage a calendar shared by users. It has been downloaded by thousands people, and it is considered one of the most successful ASP script at hotscripts.com.
Multiple SQL injections affect ASP Inline Corporate Calendar.
Solution
Disable this script
Severity
Classification
-
CVE CVE-2005-1481 -
CVSS Base Score: 7.5
AV:N/AC:L/Au:N/C:P/I:P/A:P
Related Vulnerabilities
- Arkeia Appliance Path Traversal Vulnerability
- AV Arcade 'ava_code' Cookie Parameter SQL Injection Vulnerability
- AlstraSoft AskMe Pro 'forum_answer.php' and 'profile.php' Multiple SQL Injection Vulnerabilities
- Apache Tomcat AJP Protocol Security Bypass Vulnerability
- Apple Safari PDF Javascript Security Bypass Bypass Vulnerability