漏洞信息
尽管我们使用了先进的大模型技术,但其输出仍可能包含不准确或过时的信息。神龙努力确保数据的准确性,但请您根据实际情况进行核实和判断。
漏洞
N/A
漏洞信息
Flat Calendar 1.1 does not properly restrict access to administrative functions, which allows remote attackers to (1) add new events via calAdd.php, as reachable from admin/add.php, or (2) delete events via admin/deleteEvent.php. NOTE: this is only a vulnerability when the administrator does not follow recommendations in the product's security documentation.
漏洞信息
N/A
漏洞
N/A
漏洞
Circulargenius Flat Calendar多个管理脚本身份认证绕过漏洞
漏洞信息
Flat Calendar 1.1版本没有正确的限制对管理函数的访问,这使得远程攻击者可以(1)借助calAdd.php添加新事件(可从admin/add.php中读取)或(2)借助admin/deleteEvent.php删除事件。
漏洞信息
N/A
漏洞
N/A