CVE-2026-6743

A vulnerability has been found in WebSystems WebTOTUM 2026. This impacts an unknown function of the component Calendar. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. Upgrading the affected...

EUVD-2026-24201

A vulnerability has been found in WebSystems WebTOTUM 2026. This impacts an unknown function of the component Calendar. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. Upgrading the affected...

CVE-2026-6743

A vulnerability has been found in WebSystems WebTOTUM 2026. This impacts an unknown function of the component Calendar. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. Upgrading the affected...

CVE-2026-6743 WebSystems WebTOTUM Calendar cross site scripting

A vulnerability has been found in WebSystems WebTOTUM 2026. This impacts an unknown function of the component Calendar. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. Upgrading the affected...

WebSystems WebTOTUM 跨站脚本漏洞

WebSystems WebTOTUM is a low-code application development platform offered by WebSystems Corporation. WebSystems WebTOTUM 2026 has a cross-site scripting vulnerability. This vulnerability stems from improper handling of an unknown function in the Calendar component, which may lead to cross-site...

PT-2026-34014

A vulnerability has been found in WebSystems WebTOTUM 2026. This impacts an unknown function of the component Calendar. The manipulation leads to cross site scripting. The attack may be initiated remotely. The exploit has been disclosed to the public and may be used. Upgrading the affected...

EUVD-2007-0577

Malware in sbrugna...

Information Exposure

Overview Affected versions of this package are vulnerable to Information Exposure via the calendar implementation. An attacker can obtain access to other users' calendars and their names by sending crafted requests, which may enable further targeted attacks such as phishing. Remediation Upgrade...

CVE-2018-7303

The Calendar component in Tiki 17.1 allows HTML injection...

The vulnerability of the Calendar component in the cloud software for creating and using the Nextcloud Server storage service allows a perpetrator to gain access to confidential information.

The vulnerability of the Calendar component in the cloud software for creating and using the Nextcloud Server storage service is related to improper access control. Exploiting this vulnerability can allow an attacker, operating remotely, to gain access to confidential information...

CVE-2024-21727

XSS vulnerability in DP Calendar component for Joomla...

CVE-2024-21727

XSS vulnerability in DP Calendar component for Joomla...

CVE-2024-21727 Extension - digtal-peak.com - XSS vulnerability in DP Calendar component for Joomla 8.0.0-8.0.14

XSS vulnerability in DP Calendar component for Joomla...

PT-2024-19021 · Joomla · Dp Calendar

Name of the Vulnerable Software and Affected Versions: DP Calendar component for Joomla affected versions not specified Description: The issue is related to a XSS vulnerability in the DP Calendar component for Joomla. There is no information provided about the estimated number of potentially...

CVE-2023-39699

IceWarp Mail Server v10.4.5 was discovered to contain a local file inclusion LFI vulnerability via the component /calendar/minimizer/index.php. This vulnerability allows attackers to include or execute files from the local file system of the targeted server...

SUSE CVE-2013-4635

Integer overflow in the SdnToJewish function in jewish.c in the Calendar component in PHP before 5.3.26 and 5.4.x before 5.4.16 allows context-dependent attackers to cause a denial of service application hang via a large argument to the jdtojewish function...

CVE-2022-48013

Opencats v0.9.7 was discovered to contain a stored cross-site scripting XSS vulnerability in the component /opencats/index.php?m=calendar. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Description or Title text fields...

Cross site scripting

Opencats v0.9.7 was discovered to contain a stored cross-site scripting XSS vulnerability in the component /opencats/index.php?m=calendar. This vulnerability allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Description or Title text fields...

OpenCats 跨站脚本漏洞

OpenCats is an open source recruitment process management system. OpenCats v0.9.7 version of a security vulnerability , the vulnerability stems from its /opencats/index.php?m=calendar component of the Description or Title of the text field of the operation allows an attacker to inject a carefully...

The vulnerability of the email management application, calendar, and contact list app VMware Workspace ONE Boxer stems from insufficient protection measures for the website structure. This allows attackers to perform cross-site scripting attacks.

The vulnerability of the email management application, calendar, and contact list component in VMware Workspace ONE Boxer is related to the lack of security measures for the website structure. Exploiting this vulnerability allows a malicious actor to perform cross-site scripting attacks remotely...