2 matches found
CVE-2010-4880
Multiple cross-site scripting XSS vulnerabilities in calendar.class.php in ApPHP Calendar ApPHP CAL allow remote attackers to inject arbitrary web script or HTML via the 1 categoryname, 2 categorydescription, 3 eventname, or 4 eventdescription parameter...
CVE-2010-4880
CVE-2010-4880 : Multiple XSS flaws in calendar.class.php of ApPHP Calendar (ApPHP CAL) allow remote injection of scripts via category_name, category_description, event_name, or event_description parameters. The connected documents confirm the vulnerable component and vectors but do not provide ve...