Show filters
4 Total Results
Displaying 1-4 of 4
Sort by:
Attacker Value
Unknown

CVE-2017-8342

Disclosure Date: April 30, 2017 (last updated November 26, 2024)
Radicale before 1.1.2 and 2.x before 2.0.0rc2 is prone to timing oracles and simple brute-force attacks when using the htpasswd authentication method.
0
0
Attacker Value
Unknown

CVE-2015-8747

Disclosure Date: February 03, 2016 (last updated November 25, 2024)
The multifilesystem storage backend in Radicale before 1.1 allows remote attackers to read or write to arbitrary files via a crafted component name.
0
0
Attacker Value
Unknown

CVE-2015-8748

Disclosure Date: February 03, 2016 (last updated November 25, 2024)
Radicale before 1.1 allows remote authenticated users to bypass owner_write and owner_only limitations via regex metacharacters in the user name, as demonstrated by ".*".
0
0
Attacker Value
Unknown

CVE-2016-1505

Disclosure Date: February 03, 2016 (last updated November 25, 2024)
The filesystem storage backend in Radicale before 1.1 on Windows allows remote attackers to read or write to arbitrary files via a crafted path, as demonstrated by /c:/file/ignore.
0
0