Cross-site scripting (XSS) vulnerability in yearcal.php in Calendarix allows remote malicious users to inject arbitrary web script or HTML via the ycyear parameter.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
vincent hor calendarix 0.6.2005-08-30 |
||
vincent hor calendarix advanced 1.5.2005-05-01 |