CVE-2005-4011

HIGH

7.5

CVSS Severity Score

EPSS Score0.1570%

EPSS Percentile1.34th

PublishedDec 5, 2005

Last ModifiedApr 16, 2026

Vulnerability Description

SQL injection vulnerability in calendar.php in Codewalkers ltwCalendar (aka PHP Event Calendar) 4.2, 4.1.3, and earlier allows remote attackers to execute arbitrary SQL commands via the id parameter.

Affected Platforms (CPE)

📦

Codewalkers

Ltwcalendar

<= 4.1.3

References & Advisories

🔗 http://ltwcalendar.sourceforge.net/changelog.php

🔗 http://pridels0.blogspot.com/2005/11/codewalkers-ltwcalendar-4x-sql-inj.html

🔗 http://secunia.com/advisories/17799

🔗 http://securitytracker.com/id?1016364

🔗 http://www.Silitix.com/calendar-cws.php

🔗 http://www.attrition.org/pipermail/vim/2006-December/001154.html

🔗 http://www.osvdb.org/21195

🔗 http://www.osvdb.org/27539

Vulnerability Description

Affected Platforms (CPE)

Ltwcalendar

References & Advisories

Related Vulnerabilities