Lucene search
Webcalendar ProjectWebcalendar1.2.7
2 matches found
CVE-2017-10841
Directory traversal vulnerability in WebCalendar 1.2.7 and earlier allows authenticated attackers to read arbitrary files via unspecified vectors.
4.9CVSS5.2AI score0.02181EPSS
CVE-2017-10840
Cross-site scripting vulnerability in WebCalendar 1.2.7 and earlier allows an attacker to inject arbitrary web script or HTML via unspecified vectors.
6.1CVSS5.8AI score0.00218EPSS