oss-sec mailing list archives
CVE-request: Webcalendar 1.2.4 location XSS
From: Henri Salo <henri () nerv fi>
Date: Sat, 11 Feb 2012 18:41:35 +0200
This seems to be missing 2012 CVE. Original report: http://seclists.org/bugtraq/2012/Jan/128 Project page: https://sourceforge.net/projects/webcalendar/ Version affected: 1.2.4 (the newest) Variable: location (stored) Reported to developer without response: https://sourceforge.net/tracker/?func=detail&aid=3472745&group_id=3870&atid=103870 I can validate this if needed. - Henri Salo
Current thread:
- CVE-request: Webcalendar 1.2.4 location XSS Henri Salo (Feb 11)
- Re: CVE-request: Webcalendar 1.2.4 location XSS Eitan Adler (Feb 11)
- Re: CVE-request: Webcalendar 1.2.4 location XSS Henri Salo (Feb 12)
- Re: CVE-request: Webcalendar 1.2.4 location XSS Henri Salo (Feb 12)
- Re: CVE-request: Webcalendar 1.2.4 location XSS Kurt Seifried (Feb 13)
- Re: CVE-request: Webcalendar 1.2.4 location XSS Henri Salo (Feb 12)
- Re: CVE-request: Webcalendar 1.2.4 location XSS Eitan Adler (Feb 11)