VYPR
Medium severity6.1NVD Advisory· Published May 24, 2021· Updated Jun 17, 2026

CVE-2021-20725

CVE-2021-20725

Description

Reflected cross-site scripting vulnerability in the admin page of [Calendar01] free edition ver1.0.1 and earlier allows a remote attacker to inject an arbitrary script via unspecified vectors.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

2
  • Range: <=1.0.1
  • PHP Factory/[Calendar01] free editionv5
    Range: ver1.0.1 and earlier

Patches

Vulnerability mechanics

References

2

News mentions

0

No linked articles in our index yet.