Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 11:43 a.m.6 views

CVE-2010-0638

Cross-site request forgery CSRF vulnerability in WebCalendar 1.2.0 allows remote attackers to hijack the authentication of administrators for requests that change the administrative password via unknown vectors. NOTE: the provenance of this information is unknown; the details are obtained solely...

6.8CVSS7.3AI score0.00571EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2010/02/15 6:30 p.m.32 views

CVE-2010-0638

Cross-site request forgery CSRF vulnerability in WebCalendar 1.2.0 allows remote attackers to hijack the authentication of administrators for requests that change the administrative password via unknown vectors. NOTE: the provenance of this information is unknown; the details are obtained solely...

6.8CVSS5.9AI score0.00571EPSS
Exploits0References1
NVD
NVD
added 2010/02/15 6:30 p.m.19 views

CVE-2010-0638

Cross-site request forgery CSRF vulnerability in WebCalendar 1.2.0 allows remote attackers to hijack the authentication of administrators for requests that change the administrative password via unknown vectors. NOTE: the provenance of this information is unknown; the details are obtained solely...

6.8CVSS7AI score0.00571EPSS
Exploits0References1
CVE
CVE
added 2010/02/15 6:0 p.m.52 views

CVE-2010-0638

CVE-2010-0638 affects WebCalendar 1.2.0, where a CSRF flaw allows remote attackers to hijack administrator sessions and perform password changes. The exact exploitation vectors are not detailed in the provided documents. OpenVAS notes multiple CSRF (and XSS) vulnerabilities in WebCalendar and ind...

6.8CVSS7.2AI score0.00571EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder