Linux Distros Unpatched Vulnerability : CVE-2019-18346

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - A CSRF issue was discovered in DAViCal through 1.1.8. If an authenticated user visits an attacker- controlled webpage, the attacker can send arbitrary requests ...

CVE-2019-18346

creationtimestamp| type| source ---|---|--- 2024-03-07 12:07:17+00:00| seen| https://t.me/ctinow/202330 2024-10-14 21:15:02+00:00| published-proof-of-concept| https://t.me/CyberSecurityTechnologies/507...

[SECURITY] [DLA 2034-1] davical security update

Package : davical Version : 1.1.3.1-1+deb8u1 CVE ID : CVE-2019-18345 CVE-2019-18346 CVE-2019-18347 Debian Bug : 946343 Multiple cross-site scripting and cross-site request forgery issues were discovered in the DAViCal CalDAV Server. For Debian 8 "Jessie", these problems have been fixed in version...

[SECURITY] [DSA 4582-1] davical security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4582-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff December 13, 2019 https://www.debian.org/security/faq -...

CVE-2019-18346

DAViCal CalDAV Server (up to version 1.1.8) is affected by a CSRF flaw: an authenticated user visiting a malicious page can issue arbitrary requests on behalf of themselves, potentially elevating to an admin if the user is an administrator. The CVE-2019-18346 issue is confirmed in multiple securi...