Lucene search
JpcertCVELIST:CVE-2023-47175HistoryNov 20, 2023 - 4:47 a.m.
CVE-2023-47175
2023-11-2004:47:17
jpcert
www.cve.org
1
cve-2023-47175
cross-site scripting
luxcal web calendar
remote unauthenticated attacker
arbitrary script
mysql
sqlite
Cross-site scripting vulnerability in LuxCal Web Calendar prior to 5.2.4M (MySQL version) and LuxCal Web Calendar prior to 5.2.4L (SQLite version) allows a remote unauthenticated attacker to execute an arbitrary script on the web browser of the user who is accessing the product.
CNA Affected
[
{
"vendor": "LuxSoft",
"product": "LuxCal Web Calendar",
"versions": [
{
"version": "prior to 5.2.4M (MySQL version)",
"status": "affected"
}
]
},
{
"vendor": "LuxSoft",
"product": "LuxCal Web Calendar",
"versions": [
{
"version": "prior to 5.2.4L (SQLite version)",
"status": "affected"
}
]
}
]Related
nvd
nvd
CVE-2023-47175
2023-11-20 05:15:08
cve
cve
CVE-2023-47175
2023-11-20 05:15:08
prion
prion
Cross site scripting
2023-11-20 05:15:00
jvn
jvn
JVN#15005948: Multiple vulnerabilities in LuxCal Web Calendar
2023-11-20 00:00:00