Cross-site scripting (XSS) vulnerability in the Calendar Base (cal) extension prior to 1.1.1 for TYPO3, when Internet Explorer 6 is used, allows remote malicious users to inject arbitrary web script or HTML via "search parameters."
| Vulnerable Product | Search on Vulmon | Subscribe to Product |
|---|---|---|
mario matzulla calendar base |
||
mario matzulla calendar base 0.9.0 |
||
mario matzulla calendar base 0.10.0 |
||
mario matzulla calendar base 0.11.0 |
||
mario matzulla calendar base 0.12.0 |
||
mario matzulla calendar base 0.12.1 |
||
mario matzulla calendar base 0.13.0 |
||
mario matzulla calendar base 0.13.1 |
||
mario matzulla calendar base 0.14.0 |
||
mario matzulla calendar base 0.14.1 |
||
mario matzulla calendar base 0.15.0 |
||
mario matzulla calendar base 0.15.1 |
||
mario matzulla calendar base 0.15.2 |
||
mario matzulla calendar base 0.15.3 |
||
mario matzulla calendar base 0.15.4 |
||
mario matzulla calendar base 0.15.5 |
||
mario matzulla calendar base 0.16.0 |
||
mario matzulla calendar base 0.16.1 |
||
mario matzulla calendar base 0.16.2 |
||
mario matzulla calendar base 0.16.3 |
||
mario matzulla calendar base 0.16.4 |
||
mario matzulla calendar base 0.16.5 |
||
mario matzulla calendar base 0.16.6 |
||
mario matzulla calendar base 0.17.0 |
||
mario matzulla calendar base 0.17.1 |
||
mario matzulla calendar base 0.17.2 |
||
mario matzulla calendar base 0.17.3 |
||
mario matzulla calendar base 1.0.0 |
Vulmon