Vulnerabilities > Calendar01 Project > Calendar01 > Medium

DATE CVE VULNERABILITY TITLE RISK
2021-05-24 CVE-2021-20725 Cross-site Scripting vulnerability in Calendar01 Project Calendar01 1.0.0/1.0.1
Reflected cross-site scripting vulnerability in the admin page of [Calendar01] free edition ver1.0.1 and earlier allows a remote attacker to inject an arbitrary script via unspecified vectors.
network
low complexity
calendar01-project CWE-79
6.1
6.1