Browse all 3 CVE security advisories affecting kkcal. AI-powered Chinese analysis, POCs, and references for each vulnerability.
kkcal is a web-based calendar application primarily used for scheduling and event management. Historically, it has been vulnerable to multiple remote code execution (RCE) and cross-site scripting (XSS) flaws, often stemming from improper input validation and insecure direct object references. The application has also exhibited privilege escalation vulnerabilities due to weak access controls. Notable security characteristics include its susceptibility to injection attacks and insufficient session management, with three CVEs documenting these issues. While no major public incidents have been widely reported, the consistent pattern of vulnerabilities suggests a need for rigorous security testing before deployment in sensitive environments.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2018-0508 | epg search result viewer(kkcald)跨站脚本漏洞 — epg search result viewer(kkcald) | 6.1 | - | 2018-02-01 |
| CVE-2018-0509 | epg search result viewer(kkcald)跨站请求伪造漏洞 — epg search result viewer(kkcald) | 8.8 | - | 2018-02-01 |
| CVE-2018-0510 | epg search result viewer(kkcald)缓冲区错误漏洞 — epg search result viewer(kkcald) | 9.1 | - | 2018-02-01 |
This page lists every published CVE security advisory associated with kkcal. Each entry links to a detailed page with CVSS scoring, CWE classification, affected products and references. AI-generated Chinese analysis is provided for fast triage.