CVE-2026-23478 PoC — Cal.com 安全漏洞

Source

https://github.com/Ashwesker/Ashwesker-CVE-2026-23478

Associated Vulnerability

Title:Cal.com 安全漏洞 (CVE-2026-23478)
Description:Cal.com是Cal.com开源的一个开源的日程安排软件。 Cal.com 3.1.6版本至6.0.7之前版本存在安全漏洞，该漏洞源于自定义NextAuth JWT回调存在缺陷，可能导致攻击者通过session.update()获取对任何用户帐户的完全身份验证访问权限。

Description

CVE-2026-23478

File Snapshot


 None

Shenlong Bot has cached this for you

Remarks

1. It is advised to access via the original source first.

2. If the original source is unavailable, please email f.jinxu#gmail.com for a local snapshot (replace # with @).

3. Shenlong has snapshotted the POC code for you. To support long-term maintenance, please consider donating. Thank you for your support.

Goal Reached Thanks to every supporter — we hit 100%!