5.8 Medium
AI Score
Confidence
High
0.002 Low
EPSS
Percentile
53.4%
Cross-site scripting (XSS) vulnerability in search.php in JCE-Tech PHP Calendars Script allows remote attackers to inject arbitrary web script or HTML via the search parameter.
packetstormsecurity.org/0908-exploits/phpcalsearch-xss.txt
secunia.com/advisories/36484
www.vupen.com/english/advisories/2009/2441