EUVD-2026-24201

A vulnerability has been found in WebSystems WebTOTUM 2026. This impacts an unknown function of the component Calendar. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. Upgrading the affected...

CVE-2026-6743

A vulnerability has been found in WebSystems WebTOTUM 2026. This impacts an unknown function of the component Calendar. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. Upgrading the affected...

CVE-2026-6743 WebSystems WebTOTUM Calendar cross site scripting

A vulnerability has been found in WebSystems WebTOTUM 2026. This impacts an unknown function of the component Calendar. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. Upgrading the affected...

WebSystems WebTOTUM 跨站脚本漏洞

WebSystems WebTOTUM is a low-code application development platform offered by WebSystems Corporation. WebSystems WebTOTUM 2026 has a cross-site scripting vulnerability. This vulnerability stems from improper handling of an unknown function in the Calendar component, which may lead to cross-site...

PT-2026-34014

A vulnerability has been found in WebSystems WebTOTUM 2026. This impacts an unknown function of the component Calendar. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. Upgrading the affected...

EUVD-2007-0577

Malware in sbrugna...

Information Exposure

Overview Affected versions of this package are vulnerable to Information Exposure via the calendar implementation. An attacker can obtain access to other users' calendars and their names by sending crafted requests, which may enable further targeted attacks such as phishing. Remediation Upgrade...

CVE-2018-7303

The Calendar component in Tiki 17.1 allows HTML injection...

CVE-2024-21727

XSS vulnerability in DP Calendar component for Joomla...

CVE-2024-21727

XSS vulnerability in DP Calendar component for Joomla...

CVE-2024-21727 Extension - digtal-peak.com - XSS vulnerability in DP Calendar component for Joomla 8.0.0-8.0.14

XSS vulnerability in DP Calendar component for Joomla...

PT-2024-19021 · Joomla · Dp Calendar

Name of the Vulnerable Software and Affected Versions: DP Calendar component for Joomla affected versions not specified Description: The issue is related to a XSS vulnerability in the DP Calendar component for Joomla. There is no information provided about the estimated number of potentially...

CVE-2023-39699

IceWarp Mail Server v10.4.5 was discovered to contain a local file inclusion LFI vulnerability via the component /calendar/minimizer/index.php. This vulnerability allows attackers to include or execute files from the local file system of the targeted server...

SUSE CVE-2013-4635

Integer overflow in the SdnToJewish function in jewish.c in the Calendar component in PHP before 5.3.26 and 5.4.x before 5.4.16 allows context-dependent attackers to cause a denial of service application hang via a large argument to the jdtojewish function...

CVE-2022-48013

Opencats v0.9.7 was discovered to contain a stored cross-site scripting XSS vulnerability in the component /opencats/index.php?m=calendar. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Description or Title text fields...

Cross site scripting

Opencats v0.9.7 was discovered to contain a stored cross-site scripting XSS vulnerability in the component /opencats/index.php?m=calendar. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Description or Title text fields...

OpenCats 跨站脚本漏洞

OpenCats is an open source recruitment process management system. OpenCats v0.9.7 version of a security vulnerability , the vulnerability stems from its /opencats/index.php?m=calendar component of the Description or Title of the text field of the operation allows an attacker to inject a carefully...

Triconsole Datepicker Calendar Cross-Site Scripting Vulnerability

Triconsole Datepicker Calendar is a Triconsole open source application. Provides a calendar component . A cross-site scripting vulnerability exists in Triconsole Datepicker Calendar prior to version 3.77, which stems from calendarform.php not fully validating user input, which allows an attacker ...

Oracle E-Business Suite 授权问题漏洞

Oracle E-Business Suite E-Business Suite is a set of fully integrated global business management software from Oracle Oracle. The software provides customer relationship management, service management, financial management and other functions. A security vulnerability exists in the Oracle Common...

Apple macOS Catalina Calendar Component Information Disclosure Vulnerability

Apple macOS Catalina is a specialized operating system developed by Apple for Mac computers.Calendar is one of the calendar components. A security vulnerability exists in the Calendar component in Apple macOS Catalina versions prior to 10.15.5. The vulnerability can be exploited by an attacker to...