All 11 CVE vulnerabilities found in Calendar, with AI-generated Chinese analysis, references, and POCs.
Vendor: Synology
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2026-29052 | HumHub Calendar Module: Stored XSS in Event Types CWE-79 | 5.4 | - | 2026-03-05 |
| CVE-2025-14548 | Calendar <= 1.3.16 - Authenticated (Contributor+) Stored Cross-Site Scripting via 'event_desc' CWE-79 | 6.4 | Medium | 2025-12-23 |
| CVE-2024-2831 | Calendar <= 1.3.14 - Authenticated (Contributor+) SQL Injection via Shortcode CWE-89 | 8.8 | High | 2024-05-02 |
| CVE-2023-30678 | SAMSUNG Calendar 路径遍历漏洞 | 5.1 | Medium | 2023-07-06 |
| CVE-2022-33705 | SAMSUNG Calendar 安全漏洞 CWE-285 | 3.3 | - | 2022-07-11 |
| CVE-2019-11829 | Synology Calendar 操作系统命令注入漏洞 CWE-78 | 7.3 | High | 2019-06-30 |
| CVE-2019-11825 | Synology Calendar 跨站脚本漏洞 CWE-79 | 6.5 | Medium | 2019-06-30 |
| CVE-2019-11820 | Synology Calendar 信任管理问题漏洞 CWE-522 | 5.5 | - | 2019-05-09 |
| CVE-2018-13299 | Synology Calendar 路径遍历漏洞 CWE-23 | 8.1 | - | 2019-04-01 |
| CVE-2018-8927 | Synology Calendar 授权问题漏洞 CWE-863 | 6.5 | - | 2018-06-14 |
| CVE-2018-8915 | Synology Calendar Notification Center 跨站脚本漏洞 CWE-79 | 5.4 | - | 2018-05-10 |
All 11 known CVE vulnerabilities affecting Calendar with full Chinese analysis, references, and POCs where available.