CVE-2021-20725

Summary

Reflected cross-site scripting vulnerability in the admin page of [Calendar01] free edition ver1.0.1 and earlier allows a remote attacker to inject an arbitrary script via unspecified vectors.

Affected Software

VendorProductVersion RangeStatus
PHP Factory[Calendar01] free editionver1.0.1 and earlieraffected

Weaknesses

  • Cross-site scripting

ADP Enrichment

CVE Program Container

Additional References

References