info
discussion
exploit
solution
references
WebCalendar Layers_Toggle.PHP HTTP Response Splitting Vulnerability
An exploit is not required.
An example URI has been provided:
http://www.example.com/webcalendar/layers_toggle.php?status=on&ret=[url_redirect_to]
Privacy Statement
Copyright 2010, SecurityFocus
