CVE-2013-1422
published 2020-02-04CVE-2013-1422: webcalendar before 1.2.7 shows the reason for a failed login (e.g., "no such user").
PriorityP425medium5.3CVSS 3.1
AVNACLPRNUINSUCLINAN
EPSS
1.62%
73.1th percentile
webcalendar before 1.2.7 shows the reason for a failed login (e.g., "no such user").
Affected
1 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| webcalendar_project | webcalendar | < 1.2.7 | 1.2.7 |
CVSS provenance
nvdv3.15.3MEDIUMCVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://www.openwall.com/lists/oss-security/2013/07/22/8http://www.openwall.com/lists/oss-security/2013/07/25/4https://www.securityfocus.com/bid/58250/infohttp://www.openwall.com/lists/oss-security/2013/07/22/8http://www.openwall.com/lists/oss-security/2013/07/25/4https://www.securityfocus.com/bid/58250/info
2020-02-04
Published