6.5 Medium
AI Score
Confidence
Low
0.007 Low
EPSS
Percentile
79.8%
MyCal Personal Events Calendar stores sensitive information under the web root with insufficient access control, which allows remote attackers to download a database containing the username and password via a direct request to mycal.mdb.
secunia.com/advisories/34261
exchange.xforce.ibmcloud.com/vulnerabilities/47266
www.exploit-db.com/exploits/7420