CNNVD-202507-2690 Information
Jul 21, 2025
cve
CNNVD ID
CNNVD-202507-2690
Related CVE
- CNNVD Published: 2025-07-21
Description (Chinese)
LuxSoft Luxcal是比利时LuxSoft组织的一个Web日历系统。 LuxSoft Luxcal 4.5.2版本存在安全漏洞,该漏洞源于index.php存在反射型跨站脚本,可能导致未经验证的攻击者窃取用户数据。
Description (English)
LuxSoft Luxcal is a Web calendar system of LuxSoft, Belgium. The security loophole in version 4.5.2 of LuxSoft Luxcal stems from the reflective cross-station script in index.php, which could lead to unauthorized attackers stealing user data.
Hazard Level
Low
Vulnerability Type
其他
Affected Vendor
LuxSoft
Published
2025-07-21
Last Modified
2026-02-24
References
https://suryadina.com/luxcal-reflected-xss-cve-2020-26799/ https://youtu.be/npw9jcQ1h1U https://www.luxsoft.eu/index.php?pge=dload https://access.redhat.com/security/cve/cve-2020-26799
Patch
https://www.luxsoft.eu/index.php?pge=dload
Share on: