Vulnerabilities > Calendar01 Project

DATE	CVE	VULNERABILITY TITLE	RISK
2021-05-24	CVE-2021-20725	Cross-site Scripting vulnerability in Calendar01 Project Calendar01 1.0.0/1.0.1 Reflected cross-site scripting vulnerability in the admin page of [Calendar01] free edition ver1.0.1 and earlier allows a remote attacker to inject an arbitrary script via unspecified vectors. network low complexity calendar01-project CWE-79	6.1
2020-08-04	CVE-2020-5616	Improper Authentication vulnerability in multiple products [Calendar01], [Calendar02], [PKOBO-News01], [PKOBO-vote01], [Telop01], [Gallery01], [CalendarForm01], and [Link01] [Calendar01] free edition ver1.0.0, [Calendar02] free edition ver1.0.0, [PKOBO-News01] free edition ver1.0.3 and earlier, [PKOBO-vote01] free edition ver1.0.1 and earlier, [Telop01] free edition ver1.0.0, [Gallery01] free edition ver1.0.3 and earlier, [CalendarForm01] free edition ver1.0.3 and earlier, and [Link01] free edition ver1.0.0 allows remote attackers to bypass authentication and log in to the product with administrative privileges via unspecified vectors. network low complexity calendar02-project calendar01-project link01-project calendarform01-project gallery01-project telop01-project pkobo-vote01-project pkobo-news01-project CWE-287 critical	9.8
2020-08-04	CVE-2020-5615	Cross-Site Request Forgery (CSRF) vulnerability in multiple products Cross-site request forgery (CSRF) vulnerability in [Calendar01] free edition ver1.0.0 and [Calendar02] free edition ver1.0.0 allows remote attackers to hijack the authentication of administrators via unspecified vectors. network low complexity calendar02-project calendar01-project CWE-352	8.8

Vulnerabilities > Calendar01 Project {"@context":"https://schema.org","@type":"BreadcrumbList","itemListElement":[{"@type":"ListItem","position":1,"name":"Vulnerabilities","item":"https://cyber.vumetric.com/vulns/"},{"@type":"ListItem","position":2,"name":"Calendar01 Project"}]}

Vulnerabilities > Calendar01 Project