Lucene search
K

42 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 11:43 a.m.6 views

CVE-2010-0638

Cross-site request forgery CSRF vulnerability in WebCalendar 1.2.0 allows remote attackers to hijack the authentication of administrators for requests that change the administrative password via unknown vectors. NOTE: the provenance of this information is unknown; the details are obtained solely...

6.8CVSS7.3AI score0.00571EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2011-3771

Malware in sbrugna...

5CVSS6.4AI score0.01242EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2010-0669

Malware in sbrugna...

6.8CVSS6.3AI score0.00571EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2001-0473

Malware in sbrugna...

7.5CVSS6.4AI score0.04043EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2006-2248

Malware in sbrugna...

5CVSS6.1AI score0.01655EPSS
Exploits0References10
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2012-5303

Malware in sbrugna...

4.3CVSS6.4AI score0.00931EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2007-1340

Malware in sbrugna...

7.5CVSS6.1AI score0.02144EPSS
Exploits0References12
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2010-0379

Malware in sbrugna...

5CVSS6.4AI score0.01564EPSS
Exploits0References6
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2013-1460

Malware in sbrugna...

5.3CVSS5.5AI score0.01621EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2004-1502

Malware in sbrugna...

7.5CVSS6.4AI score0.01625EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2005-3956

Malware in sbrugna...

5CVSS6.1AI score0.02161EPSS
Exploits0References13
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2013-1459

Malware in sbrugna...

4.3CVSS6.4AI score0.0124EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-20169

Malicious code in bioql PyPI...

6.1CVSS6.3AI score0.00459EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/23 9:32 a.m.16 views

CVE-2024-22635

WebCalendar v1.3.0 was discovered to contain a reflected cross-site scripting XSS vulnerability via the component /WebCalendarvqsmnseug2/editentry.php...

6.1CVSS6AI score0.00459EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:27 a.m.7 views

CVE-2011-3695

111WebCalendar 1.2.3 allows remote attackers to obtain sensitive information via a direct request to a .php file, which reveals the installation path in an error message, as demonstrated by footer.php and certain other files...

5CVSS6.5AI score0.01335EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/21 8:31 p.m.5 views

CVE-2002-2065

WebCalendar 0.9.34 and earlier with 'browsing in includes directory' enabled allows remote attackers to read arbitrary include files with .inc extensions from the web root...

5CVSS7.1AI score0.01373EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/02/05 5:28 a.m.16 views

CVE-2024-1097

A stored cross-site scripting XSS vulnerability exists in craigk5n/webcalendar version 1.3.0. The vulnerability occurs in the 'Report Name' input field while creating a new report. An attacker can inject malicious scripts, which are then executed in the context of other users who view the report,...

7.6CVSS5.2AI score0.00318EPSS
Exploits2References1
Huntr
Huntr
added 2021/10/01 5:19 a.m.9 views

Cross-Site Request Forgery (CSRF) in craigk5n/webcalendar

Description Cross-Site Request Forgery CSRF is an attack that forces an end user to execute unwanted actions on a web application in which they’re currently authenticated. With a little help of social engineering such as sending a link via email or chat, an attacker may trick the users of a web...

0.7AI score
Exploits0References1
Prion
Prion
added 2020/01/27 3:15 p.m.12 views

Code injection

install/index.php in WebCalendar before 1.2.5 allows remote attackers to execute arbitrary code via the formsingleuserlogin parameter...

7.5CVSS8.1AI score0.79764EPSS
Exploits15References4Affected Software1
Cvelist
Cvelist
added 2020/01/27 2:39 p.m.22 views

CVE-2012-1495

install/index.php in WebCalendar before 1.2.5 allows remote attackers to execute arbitrary code via the formsingleuserlogin parameter...

9.7AI score0.79764EPSS
Exploits15References4
Rows per page
Query Builder