Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

10 matches found

Vulnrichment
Vulnrichmentadded 2026/01/28 6:43 a.m.3 views

CVE-2026-1310 Simple calendar for Elementor <= 1.6.6 - Missing Authorization to Unauthenticated Arbitrary Calendar Entry Deletion

The Simple calendar for Elementor plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 1.6.6. This is due to missing capability checks on the migaajaxeditorcaldelete function that is hooked to the migaeditorcaldelete AJAX action with both authenticated...

5.3CVSS6AI score0.00042EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2026/01/28 12:0 a.m.7 views

PT-2026-5070

The Simple calendar for Elementor plugin for WordPress is vulnerable to Missing Authorization in all versions up to, and including, 1.6.6. This is due to missing capability checks on the miga ajax editor cal delete function that is hooked to the miga editor cal delete AJAX action with both...

5.3CVSS6AI score0.00042EPSS
Exploits0References5
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2002-0731

Malware in sbrugna...

7.5CVSS6.4AI score0.00861EPSS
Exploits1References4
EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2009-5016

Malware in sbrugna...

3.5CVSS6.4AI score0.00335EPSS
Exploits0References2
Veracode
Veracodeadded 2017/06/07 7:37 a.m.18 views

Capability Bypass

Moodle is vulnerable to capability bypass. An authenticated user can bypass the moodle/calendar:manageownentries capability and add a new calendar entry...

4CVSS6AI score0.00241EPSS
Exploits0References5Affected Software1
NVD
NVDadded 2012/07/21 3:38 a.m.11 views

CVE-2012-2367

Moodle 1.9.x before 1.9.18, 2.0.x before 2.0.9, 2.1.x before 2.1.6, and 2.2.x before 2.2.3 allows remote authenticated users to bypass the moodle/calendar:manageownentries capability requirement and add a calendar entry via a New Entry action...

4CVSS6AI score0.00241EPSS
Exploits0References5
Prion
Prionadded 2012/07/21 3:38 a.m.14 views

Design/Logic Flaw

Moodle 1.9.x before 1.9.18, 2.0.x before 2.0.9, 2.1.x before 2.1.6, and 2.2.x before 2.2.3 allows remote authenticated users to bypass the moodle/calendar:manageownentries capability requirement and add a calendar entry via a New Entry action...

4CVSS6.5AI score0.00241EPSS
Exploits0References5Affected Software1
Cvelist
Cvelistadded 2012/07/21 1:0 a.m.23 views

CVE-2012-2367

Moodle 1.9.x before 1.9.18, 2.0.x before 2.0.9, 2.1.x before 2.1.6, and 2.2.x before 2.2.3 allows remote authenticated users to bypass the moodle/calendar:manageownentries capability requirement and add a calendar entry via a New Entry action...

5.9AI score0.00241EPSS
Exploits0References5
ATTACKERKB
ATTACKERKBadded 2011/03/22 5:55 p.m.0 views

CVE-2009-5060

Unspecified vulnerability in IBM Lotus Quickr 8.1 before 8.1.0.11 services for Lotus Domino might allow remote authenticated users to cause a denial of service daemon crash by accessing an entry in a calendar, aka SPR MZHA7SEBJX...

3.5CVSS5.6AI score0.00335EPSS
Exploits0References2
Prion
Prionadded 2011/03/22 5:55 p.m.11 views

Code injection

Unspecified vulnerability in IBM Lotus Quickr 8.1 before 8.1.0.11 services for Lotus Domino might allow remote authenticated users to cause a denial of service daemon crash by accessing an entry in a calendar, aka SPR MZHA7SEBJX...

3.5CVSS6.6AI score0.00335EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder