Vulnerability Details : CVE-2005-2320
WebCalendar before 1.0.0 does not properly restrict access to assistant_edit.php, which allows remote attackers to gain privileges.
Products affected by CVE-2005-2320
- cpe:2.3:a:webcalendar:webcalendar:0.9.11:*:*:*:*:*:*:*
- cpe:2.3:a:webcalendar:webcalendar:0.9.23:*:*:*:*:*:*:*
- cpe:2.3:a:webcalendar:webcalendar:0.9.25:*:*:*:*:*:*:*
- cpe:2.3:a:webcalendar:webcalendar:0.9.15:*:*:*:*:*:*:*
- cpe:2.3:a:webcalendar:webcalendar:0.9.16:*:*:*:*:*:*:*
- cpe:2.3:a:webcalendar:webcalendar:0.9.19:*:*:*:*:*:*:*
- cpe:2.3:a:webcalendar:webcalendar:0.9.20:*:*:*:*:*:*:*
- cpe:2.3:a:webcalendar:webcalendar:0.9.21:*:*:*:*:*:*:*
- cpe:2.3:a:webcalendar:webcalendar:0.9.22:*:*:*:*:*:*:*
- cpe:2.3:a:webcalendar:webcalendar:0.9.24:*:*:*:*:*:*:*
- cpe:2.3:a:webcalendar:webcalendar:0.9.26:*:*:*:*:*:*:*
- cpe:2.3:a:webcalendar:webcalendar:0.9.8:*:*:*:*:*:*:*
- cpe:2.3:a:webcalendar:webcalendar:0.9.31:*:*:*:*:*:*:*
- cpe:2.3:a:webcalendar:webcalendar:0.9.32:*:*:*:*:*:*:*
- cpe:2.3:a:webcalendar:webcalendar:0.9.34:*:*:*:*:*:*:*
- cpe:2.3:a:webcalendar:webcalendar:0.9.33:*:*:*:*:*:*:*
- cpe:2.3:a:webcalendar:webcalendar:0.9.27:*:*:*:*:*:*:*
- cpe:2.3:a:webcalendar:webcalendar:0.9.28:*:*:*:*:*:*:*
- cpe:2.3:a:webcalendar:webcalendar:0.9.36:*:*:*:*:*:*:*
- cpe:2.3:a:webcalendar:webcalendar:0.9.37:*:*:*:*:*:*:*
- cpe:2.3:a:webcalendar:webcalendar:0.9.44:*:*:*:*:*:*:*
- cpe:2.3:a:webcalendar:webcalendar:0.9.29:*:*:*:*:*:*:*
- cpe:2.3:a:webcalendar:webcalendar:0.9.30:*:*:*:*:*:*:*
- cpe:2.3:a:webcalendar:webcalendar:0.9.38:*:*:*:*:*:*:*
- cpe:2.3:a:webcalendar:webcalendar:0.9.39:*:*:*:*:*:*:*
- cpe:2.3:a:webcalendar:webcalendar:0.9.40:*:*:*:*:*:*:*
- cpe:2.3:a:webcalendar:webcalendar:0.9.41:*:*:*:*:*:*:*
- cpe:2.3:a:webcalendar:webcalendar:0.9.35:*:*:*:*:*:*:*
- cpe:2.3:a:webcalendar:webcalendar:0.9.42:*:*:*:*:*:*:*
- cpe:2.3:a:webcalendar:webcalendar:0.9.43:*:*:*:*:*:*:*
- cpe:2.3:a:webcalendar:webcalendar:0.9.45:*:*:*:*:*:*:*
- cpe:2.3:a:webcalendar:webcalendar:0.9.50:*:*:*:*:*:*:*
- cpe:2.3:a:webcalendar:webcalendar:1.0.0:rc2:*:*:*:*:*:*
- cpe:2.3:a:webcalendar:webcalendar:1.0.0:rc1:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2005-2320
0.45%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 75 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2005-2320
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
7.5
|
HIGH | AV:N/AC:L/Au:N/C:P/I:P/A:P |
10.0
|
6.4
|
NIST |
References for CVE-2005-2320
Jump to