Unrated severityNVD Advisory· Published Feb 18, 2025· Updated Feb 18, 2025

CVE-2025-25221

Description

The LuxCal Web Calendar prior to 5.3.3M (MySQL version) and prior to 5.3.3L (SQLite version) contains an SQL injection vulnerability in pdf.php. If this vulnerability is exploited, information in a database may be deleted, altered, or retrieved.

Affected products

Luxsoft/The Luxcal Web Calendarv5
Range: prior to 5.3.3L (SQLite version)

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

jvn.jp/en/jp/JVN26024080/mitre
www.luxsoft.eumitre
www.luxsoft.eu/lcforum/viewtopic.phpmitre

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000