2 matches found
PT-2024-30465 · Unknown · Speedycache
Name of the Vulnerable Software and Affected Versions: SpeedyCache versions 1.1.8 and earlier Description: A Cross-Site Request Forgery CSRF issue affects the SpeedyCache plugin. This allows an attacker to perform unintended actions on a user's account. Users are urged to upgrade to mitigate risk...
PT-2019-5239 · Davical · Davical
Name of the Vulnerable Software and Affected Versions: DAViCal versions through 1.1.8 Description: A reflected XSS issue was discovered in DAViCal. It echoes the action parameter without encoding. If a user visits an attacker-supplied link, the attacker can view all data the attacked user can vie...