3 matches found
CVE-2005-1146
NOTE: this issue has been disputed by the vendor. Cross-site scripting XSS vulnerability in the login command in calendar.pl in CalendarScript 3.21 allows remote attackers to inject arbitrary web script or HTML via the username parameter, a different vulnerability than CVE-2005-1145...
CVE-2005-1146
CalendarScript 3.21 is affected by a Cross‑Site Scripting (XSS) flaw in the login command (calendar.pl) via the username parameter. The issue is documented as CVE-2005-1146 and is noted by some sources as disputed by the vendor. Connected sources also reference CalendarScript 3.21 alongside previ...
CVE-2005-1146
NOTE: this issue has been disputed by the vendor. Cross-site scripting XSS vulnerability in the login command in calendar.pl in CalendarScript 3.21 allows remote attackers to inject arbitrary web script or HTML via the username parameter, a different vulnerability than CVE-2005-1145...