Metrics
Affected Vendors & Products
Mon, 15 Sep 2025 17:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
First Time appeared |
Luxsoft
Luxsoft luxcal Web Calendar |
|
CPEs | cpe:2.3:a:luxsoft:luxcal_web_calendar:*:*:mysql:*:*:*:*:* cpe:2.3:a:luxsoft:luxcal_web_calendar:*:*:sqlite:*:*:*:*:* |
|
Vendors & Products |
Luxsoft
Luxsoft luxcal Web Calendar |
|
Metrics |
cvssV3_1
|
Wed, 16 Jul 2025 13:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
epss
|
epss
|
Tue, 18 Feb 2025 20:15:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
Tue, 18 Feb 2025 00:45:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | The LuxCal Web Calendar prior to 5.3.3M (MySQL version) and prior to 5.3.3L (SQLite version) contains a path traversal vulnerability in dloader.php. If this vulnerability is exploited, arbitrary files on a server may be obtained. | |
Weaknesses | CWE-22 | |
References |
| |
Metrics |
cvssV3_0
|

Status: PUBLISHED
Assigner: jpcert
Published:
Updated: 2025-02-18T19:29:16.869Z
Reserved: 2025-02-04T05:38:52.829Z
Link: CVE-2025-25223

Updated: 2025-02-18T17:13:23.479Z

Status : Analyzed
Published: 2025-02-18T01:15:09.347
Modified: 2025-09-15T17:13:19.130
Link: CVE-2025-25223

No data.

No data.