Vulnerability Details CVE-2005-2320
WebCalendar before 1.0.0 does not properly restrict access to assistant_edit.php, which allows remote attackers to gain privileges.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.007
EPSS Ranking 71.9%
CVSS Severity
CVSS v2 Score 7.5
Products affected by CVE-2005-2320
-
cpe:2.3:a:webcalendar:webcalendar:0.9.11
-
cpe:2.3:a:webcalendar:webcalendar:0.9.15
-
cpe:2.3:a:webcalendar:webcalendar:0.9.16
-
cpe:2.3:a:webcalendar:webcalendar:0.9.19
-
cpe:2.3:a:webcalendar:webcalendar:0.9.20
-
cpe:2.3:a:webcalendar:webcalendar:0.9.21
-
cpe:2.3:a:webcalendar:webcalendar:0.9.22
-
cpe:2.3:a:webcalendar:webcalendar:0.9.23
-
cpe:2.3:a:webcalendar:webcalendar:0.9.24
-
cpe:2.3:a:webcalendar:webcalendar:0.9.25
-
cpe:2.3:a:webcalendar:webcalendar:0.9.26
-
cpe:2.3:a:webcalendar:webcalendar:0.9.27
-
cpe:2.3:a:webcalendar:webcalendar:0.9.28
-
cpe:2.3:a:webcalendar:webcalendar:0.9.29
-
cpe:2.3:a:webcalendar:webcalendar:0.9.30
-
cpe:2.3:a:webcalendar:webcalendar:0.9.31
-
cpe:2.3:a:webcalendar:webcalendar:0.9.32
-
cpe:2.3:a:webcalendar:webcalendar:0.9.33
-
cpe:2.3:a:webcalendar:webcalendar:0.9.34
-
cpe:2.3:a:webcalendar:webcalendar:0.9.35
-
cpe:2.3:a:webcalendar:webcalendar:0.9.36
-
cpe:2.3:a:webcalendar:webcalendar:0.9.37
-
cpe:2.3:a:webcalendar:webcalendar:0.9.38
-
cpe:2.3:a:webcalendar:webcalendar:0.9.39
-
cpe:2.3:a:webcalendar:webcalendar:0.9.40
-
cpe:2.3:a:webcalendar:webcalendar:0.9.41
-
cpe:2.3:a:webcalendar:webcalendar:0.9.42
-
cpe:2.3:a:webcalendar:webcalendar:0.9.43
-
cpe:2.3:a:webcalendar:webcalendar:0.9.44
-
cpe:2.3:a:webcalendar:webcalendar:0.9.45
-
cpe:2.3:a:webcalendar:webcalendar:0.9.50
-
cpe:2.3:a:webcalendar:webcalendar:0.9.8
-
cpe:2.3:a:webcalendar:webcalendar:1.0.0