VYPR

Webcalendar

by K5n.us

Source repositories

CVEs (2)

  • CVE-2017-10840MedAug 29, 2017
    risk 0.40cvss 6.1epss 0.01

    Cross-site scripting vulnerability in WebCalendar 1.2.7 and earlier allows an attacker to inject arbitrary web script or HTML via unspecified vectors.

  • CVE-2017-10841MedAug 29, 2017
    risk 0.32cvss 4.9epss 0.02

    Directory traversal vulnerability in WebCalendar 1.2.7 and earlier allows authenticated attackers to read arbitrary files via unspecified vectors.