Multiple cross-site scripting (XSS) vulnerabilities in Michael Arndt WebCal 1.11-3.04 allow remote attackers to inject arbitrary web script or HTML via the (1) function, (2) year, and (3) date parameters to webcal.cgi, (4) new calendar entries, and (5) notes for entries.
Metrics
Affected Vendors & Products
References
History
No history.

Status: PUBLISHED
Assigner: mitre
Published: 2005-12-17T11:00:00
Updated: 2024-08-07T23:38:51.862Z
Reserved: 2005-12-17T00:00:00
Link: CVE-2005-4327

No data.

Status : Modified
Published: 2005-12-17T11:03:00.000
Modified: 2024-11-21T00:03:59.533
Link: CVE-2005-4327

No data.