CVE-2005-4657

Ocean12 Calendar Manager Pro 1.01 - Auth Bypass

Title source: llm

Exploitation Summary

EIP tracks 1 public exploit for CVE-2005-4657. PoCs published by syst3m_f4ult.

AI-analyzed exploit summary The exploit describes an authentication bypass vulnerability in Ocean12 ASP Calendar Manager version 1.01. The issue arises from improper access validation, allowing attackers to access restricted data via a direct URL.

Description

Ocean12 Calendar Manager Pro 1.01 allows remote attackers to bypass authentication and obtain sensitive information via a direct request to /admin/view.asp. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Exploits (1)

exploitdb WRITEUP VERIFIED

by syst3m_f4ult · textwebappsasp

https://www.exploit-db.com/exploits/26473

View Code ZIP pw:eip

The exploit describes an authentication bypass vulnerability in Ocean12 ASP Calendar Manager version 1.01. The issue arises from improper access validation, allowing attackers to access restricted data via a direct URL.

Classification

Writeup 80%

Attack Type

Auth Bypass

Complexity

Trivial

Reliability

Theoretical

Target: Ocean12 ASP Calendar Manager 1.01

No auth needed

Prerequisites: Network access to the target application

MITRE ATT&CK

T1552 - Unsecured Credentials

devstral-2 · analyzed Feb 16, 2026 Full analysis →

References (1)

Core 1

Core References

Exploit vdb-entry x_refsource_bid

http://www.securityfocus.com/bid/15329

Scores

EPSS 0.0290

EPSS Percentile 85.2%

Details

Status published

Products (1)

ocean12_technologies/calendar_manager_pro 1.01

Published Dec 31, 2005

Tracked Since Feb 18, 2026