Search: Home Bugtraq Vulnerabilities Mailing Lists Jobs Tools Beta Programs
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
ExtCalendar v1.0 Multiple Xss Vuln Mar 19 2006 05:32PM
Soothackers gmail com
------------------------------------------
ExtCalendar v1.0 Multiple Xss Vuln
------------------------------------------

Bug:

http://victim/path/calendar.php?op=cal&month=3&year="><script>alert(/Soo
t/)</script>
http://victim/path/calendar.php?op=cal&month="><script>alert(/Soot/)</sc
ript>&ye...

[ more ]  




 

Privacy Statement
Copyright 2009, SecurityFocus