WebCalendar Multiple Remote Vulnerabilities

info
discussion
exploit
solution
references

WebCalendar Multiple Remote Vulnerabilities

Multiple remote vulnerabilities are reported to exist in WebCalendar.

Multiple cross-site scripting vulnerabilites, an HTTP response splitting vulnerability, and two authentication bypass vulnerabilities are reported to exist in many different scripts in the affected application.

Fixes are reported to exist in the CVS version of the software.