BugTraq
Name:
Email:
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Subject:
Message:
 
Webcalendar 1.2.4 'location' XSS Jan 20 2012 03:34AM
tom (tom g13net com)
# Exploit Title: Webcalendar 1.2.4 'location' XSS
# Date: 01/11/12
# Author: G13
# Software Link:
https://sourceforge.net/projects/webcalendar/?source=directory
# Version: 1.2.5
# Category: webapps (php)
#

##### Vulnerability #####

There is no sanitation on the input of the location variable. Th...

[ more ]  
 

Privacy Statement
Copyright 2010, SecurityFocus