Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
webcalendar project webcalendar 1.2.7 vulnerabilities and exploits
(subscribe to this query)
4.3
CVSSv2
CVE-2017-10840
Cross-site scripting vulnerability in WebCalendar 1.2.7 and previous versions allows an malicious user to inject arbitrary web script or HTML via unspecified vectors.
Webcalendar Project Webcalendar 1.2.7
4
CVSSv2
CVE-2017-10841
Directory traversal vulnerability in WebCalendar 1.2.7 and previous versions allows authenticated malicious users to read arbitrary files via unspecified vectors.
Webcalendar Project Webcalendar 1.2.7
4.3
CVSSv2
CVE-2013-1421
Cross-site scripting (XSS) vulnerability in Craig Knudsen WebCalendar prior to 1.2.5, 1.2.6, and other versions prior to 1.2.7 allows remote malicious users to inject arbitrary web script or HTML via the Category Name field to category.php.
Webcalendar Project Webcalendar 1.0
Webcalendar Project Webcalendar 1.1.1
Webcalendar Project Webcalendar 1.2.0
Webcalendar Project Webcalendar 1.2.2
Webcalendar Project Webcalendar 1.1.3
Webcalendar Project Webcalendar 1.1.4
Webcalendar Project Webcalendar 1.1.5
Webcalendar Project Webcalendar 1.1.6
Webcalendar Project Webcalendar 1.2
Webcalendar Project Webcalendar 1.2.6
Webcalendar Project Webcalendar
Webcalendar Project Webcalendar 1.1.2
Webcalendar Project Webcalendar 1.2.1
Webcalendar Project Webcalendar 1.2.3
5
CVSSv2
CVE-2013-1422
webcalendar prior to 1.2.7 shows the reason for a failed login (e.g., "no such user").
Webcalendar Project Webcalendar
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
spoof
CVE-2024-34928
CVE-2024-5291
deserialization
CVE-2024-4471
CVE-2024-4956
CVE-2024-32002
CVE-2024-5227
unspecified
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started