Cross-site scripting in PostCalendar 3.02 allows remote malicious users to insert arbitrary HTML and script, and steal cookies, by modifying a calendar entry in its preview page.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
postnuke software foundation postcalendar 3.0 |