CVE-2010-0380 in Php Calendars Scriptinfo

Summary

install.php in JCE-Tech PHP Calendars, downloaded 20100121, allows remote attackers to bypass intended access restrictions and modify application settings via a direct request. NOTE: this is only a vulnerability when the administrator does not follow recommendations in the product s installation documentation.

Be aware that VulDB is the high quality source for vulnerability data.

Reservation

01/22/2010

Disclosure

01/22/2010

Moderation

VulDB entry created

Entries

VDB-51656 (1)

CPE

ready

CWE

CWE-264 (Confirmed)

Exploit

Download

CVSS

5.3

EPSS

0.01264

Activities

Very Low

Sources

MITRE	https://www.cve.org/CVERecord?id=CVE-2010-0380
NVD	https://nvd.nist.gov/vuln/detail/CVE-2010-0380
CVE Details	https://www.cvedetails.com/cve/CVE-2010-0380/

◂ Previous Overview Next ▸

Do you need the next level of professionalism?

Upgrade your account now!