CVE-2006-6229

MEDIUM

5.0

CVSS Severity Score

EPSS Score0.0220%

EPSS Percentile3.65th

PublishedDec 2, 2006

Last ModifiedApr 23, 2026

Vulnerability Description

Codewalkers ltwCalendar (aka PHP Event Calendar) before 4.2.1 logs failed passwords, which might allow attackers to infer correct passwords from the log file.

Affected Platforms (CPE)

📦

Codewalkers

Ltwcalendar

= 4.1.3

📦

Codewalkers

Ltwcalendar

= 4.2

References & Advisories

🔗 http://ltwcalendar.sourceforge.net/changelog.php

Related Vulnerabilities

CVE-2005-40117.5

SQL injection vulnerability in calendar.php in Codewalkers ltwCalendar (aka PHP Event Calendar) 4.2, 4.1.3, and earlier allows rem...

CVE-2006-30417.5

PHP remote file inclusion vulnerability in Ltwcalendar/calendar.php in Codewalkers Ltwcalendar 4.1.3 allows remote attackers to ex...

CVE-2006-62286.8

Cross-site scripting (XSS) vulnerability in Codewalkers ltwCalendar (aka PHP Event Calendar) before 4.2.1 allows remote attackers ...

CVE-2006-610210.0

Integer overflow in the ProcDbeGetVisualInfo function in the DBE extension for X.Org 6.8.2, 6.9.0, 7.0, and 7.1, and XFree86 X ser...