Cross-site scripting (XSS) vulnerability in index.php in phpGroupWare 0.9.14.005 and earlier allows remote attackers to inject arbitrary web script or HTML via the date parameter in a calendar.uicalendar.planner menuaction.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: mitre
Published: 2005-11-28T23:00:00Z
Updated: 2024-09-17T02:52:29.906Z
Reserved: 2005-11-28T00:00:00Z
Link: CVE-2004-2574
Vulnrichment
No data.
NVD
Status : Modified
Published: 2004-12-31T05:00:00.000
Modified: 2024-11-20T23:53:42.277
Link: CVE-2004-2574
Redhat
No data.