CVE-2008-7018
CVE-2008-7018 describes a cross-site scripting (XSS) vulnerability in NashTech Easy PHP Calendar 6.3.25. An attacker can inject arbitrary web script or HTML via the Details field (descr parameter) when adding a new event in index.php. The affected component is the Add New Event action; the exact ...