Acal Calendar Project — known CVE vulnerabilities
Every CVE whose affected-product data names Acal Calendar Project, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (2)
- CVE-2006-0182 — CVSS 7.5 (high): login.php in ACal Calendar Project 2.2.5 allows remote attackers to bypass authentication by setting the ACalAuthenticate cookie variable…
- CVE-2006-0183 — CVSS 6.5 (medium): Direct static code injection vulnerability in edit.php in ACal Calendar Project 2.2.5 allows authenticated users to execute arbitrary PHP…