Calendar Express Search.PHP Cross-Site Scripting Vulnerability

No description provided by source. source: http://www.securityfocus.com/bid/22578/info Calendar Express is prone to a cross-site scripting vulnerability because the application fails to properly sanitize user-supplied input. An attacker may leverage this issue to execute arbitrary script code in...

Unfixed XSS vulnerability at www.math.upenn.edu

Security researcher p0pc0rn, has submitted on 07/01/2011 a cross-site-scripting XSS vulnerability affecting www.math.upenn.edu, which at the time of submission ranked 2647 on the web according to Alexa. We manually validated and published a mirror of this vulnerability on 09/12/2011. It is...