Home page logo
/

oss-sec logo oss-sec mailing list archives

CVE-request: Webcalendar 1.2.4 location XSS
From: Henri Salo <henri () nerv fi>
Date: Sat, 11 Feb 2012 18:41:35 +0200

This seems to be missing 2012 CVE.

Original report: http://seclists.org/bugtraq/2012/Jan/128
Project page: https://sourceforge.net/projects/webcalendar/
Version affected: 1.2.4 (the newest)
Variable: location (stored)
Reported to developer without response: 
https://sourceforge.net/tracker/?func=detail&aid=3472745&group_id=3870&atid=103870

I can validate this if needed.

- Henri Salo


  By Date           By Thread  

Current thread:
[ Nmap | Sec Tools | Mailing Lists | Site News | About/Contact | Advertising | Privacy ]