CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2020-5615

Cross-site request forgery (CSRF) vulnerability in [Calendar01] free edition ver1.0.0 and [Calendar02] free edition ver1.0.0 allows remote attackers to hijack the authentication of administrators via unspecified vectors.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.001

EPSS Ranking 35.2%

CVSS Severity

CVSS v3 Score 8.8

CVSS v2 Score 6.8

References

https://jvn.jp/en/jp/JVN73169744/index.html
https://www.php-factory.net/calendar/01.php
https://www.php-factory.net/calendar/02.php
https://jvn.jp/en/jp/JVN73169744/index.html
https://www.php-factory.net/calendar/01.php
https://www.php-factory.net/calendar/02.php

Products affected by CVE-2020-5615

Calendar01 Project » Calendar01 » Version: 1.0.0

cpe:2.3:a:calendar01_project:calendar01:1.0.0
Calendar02 Project » Calendar02 » Version: 1.0.0

cpe:2.3:a:calendar02_project:calendar02:1.0.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2020-5615

Products

Pricing

Contact Us