CVE-2012-1495
Get alerts for future matching vulnerabilitiesLog in to subscribe
I. Basic Information for CVE-2012-1495
Vulnerability Information
Have questions about the vulnerability? See if Shenlong's analysis helps!
View Shenlong Deep Dive ↗ Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Description
install/index.php in WebCalendar before 1.2.5 allows remote attackers to execute arbitrary code via the form_single_user_login parameter.
Source: NVD (National Vulnerability Database)
CVSS Information
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Type
N/A
Source: NVD (National Vulnerability Database)
Vulnerability Title
WebCalendar多个输入验证错误漏洞
Source: CNNVD (China National Vulnerability Database)
Vulnerability Description
WebCalendar是一个基于Web的日历应用软件。 WebCalendar中存在多个输入验证漏洞,这些漏洞源于对用户提供的输入未经正确过滤。攻击者可利用这些漏洞在受影响应用程序上下文中注入任意PHP代码,包含并执行来自受影响系统的任意文件,也可能执行其他的攻击。WebCalendar 1.2.4版本中存在这些漏洞,其他版本也可能受到影响。
Source: CNNVD (China National Vulnerability Database)
CVSS Information
N/A
Source: CNNVD (China National Vulnerability Database)
Vulnerability Type
N/A
Source: CNNVD (China National Vulnerability Database)
Shenlong Deep Dive — AI Deep Analysis
10-question deep dive: root cause, exploitation, mitigation, urgency. Read summary free, full version requires login.
Affected Products
| Vendor | Product | Affected Versions | CPE | Subscribe |
|---|---|---|---|---|
| - | n/a | n/a | - |
II. Public POCs for CVE-2012-1495
| # | POC Description | Source Link | Shenlong Link |
|---|---|---|---|
| 1 | None | https://github.com/axelbankole/CVE-2012-1495-Webcalendar- | POC Details |
AI-Generated POCPremium
No public POC found.
Login to generate AI POCIII. Intelligence Information for CVE-2012-1495
Please Login to view more intelligence information
- https://www.exploit-db.com/exploits/18775x_refsource_MISC
- https://nvd.nist.gov/vuln/detail/CVE-2012-1495
Same Patch Batch · n/a · 2020-01-27 · 75 CVEs total
| CVE-2019-11318 | Zimbra Collaboration Suite 跨站脚本漏洞 | |
| CVE-2019-20441 | WSO2 API Manager 跨站脚本漏洞 | |
| CVE-2020-8087 | SMC Networks D3G0804W 安全漏洞 | |
| CVE-2014-8563 | Zimbra Collaboration Suite 操作系统命令注入漏洞 | |
| CVE-2019-8945 | Zimbra Collaboration Suite 跨站脚本漏洞 | |
| CVE-2019-8946 | Zimbra Collaboration Suite 跨站脚本漏洞 | |
| CVE-2019-8947 | Zimbra Collaboration Suite 跨站脚本漏洞 | |
| CVE-2018-19441 | Neato Robotics Neato Botvac Connected 安全特征问题漏洞 | |
| CVE-2015-2249 | Zimbra Collaboration Suite 跨站脚本漏洞 | |
| CVE-2014-5500 | Zimbra Collaboration Suite 跨站脚本漏洞 | |
| CVE-2020-8088 | UseBB 安全漏洞 | |
| CVE-2019-12427 | Zimbra Collaboration Suite 跨站脚本漏洞 | |
| CVE-2019-15313 | Zimbra Collaboration Suite 跨站脚本漏洞 | |
| CVE-2019-19143 | TP-LINK TL-WR849N 访问控制错误漏洞 | |
| CVE-2019-19539 | 多款HPE产品安全漏洞 | |
| CVE-2014-3979 | Bytemark Symbiosis 安全漏洞 | |
| CVE-2019-19822 | 多款TotoLink产品访问控制错误漏洞 | |
| CVE-2019-19823 | TotoLink A3002RU 安全漏洞 | |
| CVE-2013-4770 | Eucalyptus Management Console 跨站脚本漏洞 | |
| CVE-2013-7390 | ZOHO ManageEngine DesktopCentral 代码问题漏洞 |
Showing top 20 of 75 CVEs. View all on vendor page → →
IV. Related Vulnerabilities
Same vendor: n/a
- CVE-2026-8196
JeecgBoot mLogin Endpoint LoginController.java authorization - CVE-2026-8195
JeecgBoot SVG File CommonController.java cross site scriptin - CVE-2026-8194
osTicket Dispatcher class.dispatcher.php cross-site request - CVE-2026-8193
Akaunting Invoice PDF Rendering dompdf.php server-side reque - CVE-2026-8186
Open5GS NF client.c ogs_sbi_client_send_via_scp_or_sepp out-
V. Comments for CVE-2012-1495
No comments yet