CVE

CVE-2021-45915

admin

CVE-2021-45915

In LuxSoft LuxCal Web Calendar before 5.2.0, an unauthenticated attacker can manipulate a cookie value. This allows the attacker’s session to be authenticated as any registered LuxCal user, including the site administrator.

Source: CVE-2021-45915

Exit mobile version