CVE-2010-0638

Name of the Vulnerable Software and Affected Versions WebCalendar version 1.2.0

Description A cross-site request forgery (CSRF) issue allows remote attackers to hijack the authentication of administrators for requests that change the administrative password. The exact vectors used for this exploit are not specified.

Recommendations For WebCalendar version 1.2.0, as a temporary workaround, consider implementing additional authentication checks to minimize the risk of CSRF exploitation. However, at the moment, there is no information about a newer version that contains a fix for this vulnerability.