5
CVE-2005-1148
- EPSS 1.58%
- Veröffentlicht 02.05.2005 04:00:00
- Zuletzt bearbeitet 16.06.2026 22:12:32
- Quelle cve@mitre.org
- CVE-Watchlists
- Unerledigt
Logincalendar.pl in CalendarScript 3.21 allows remote attackers to obtain sensitive information via invalid (1) year or (2) month parameters, which leaks the full pathname and debug information.
Daten sind bereitgestellt durch National Vulnerability Database (NVD)
Calendarscript ≫ Calendarscript Version3.20
Calendarscript ≫ Calendarscript Version3.21
| Typ | Quelle | Score | Percentile |
|---|---|---|---|
| EPSS | FIRST.org | 1.58% | 0.724 |
| Quelle | Base Score | Exploit Score | Impact Score | Vector String |
|---|---|---|---|---|
| nvd@nist.gov | 5 | 10 | 2.9 |
AV:N/AC:L/Au:N/C:P/I:N/A:N
|
http://securitytracker.com/id?1013705
http://www.snkenjoi.com/secadv/secadv3.txt
https://exchange.xforce.ibmcloud.com/vulnerabilities/20102