PluggedOut Blog Calendar Module Cross-Site Scripting Vulnerability

PluggedOut Blog Calendar Module Cross-Site Scripting Vulnerability

The Blog 'calendar' module does not sufficiently sanitize data supplied via URI parameters, making it prone to cross-site scripting attacks. This could allow for execution of hostile HTML and script code in the web client of a user who visits a malicious link to the vulnerable site.