Lucene search
K

4 matches found

CVE
CVE
added 2014/02/05 3:0 p.m.64 views

CVE-2013-1470

CVE-2013-1470 affects Geeklog’s Calendar plugin (calendar/index.php) with XSS via the calendar_type parameter submitted to submit.php. Affected: Geeklog before 1.8.2sr1 and 2.0.0 before 2.0.0rc2. Root cause: insufficient input sanitization of the calendar_type field leading to injection of arbitr...

4.3CVSS5.7AI score0.01885EPSS
Exploits3References5Affected Software1
securityvulns
securityvulns
added 2013/03/03 12:0 a.m.106 views

Cross-Site Scripting (XSS) in Geeklog

Advisory ID: HTB23143 Product: Geeklog Vendor: http://www.geeklog.net Vulnerable Versions: 1.8.2 and probably prior Tested Version: 1.8.2 Vendor Notification: February 6, 2013 Vendor Patch: February 20, 2013 Public Disclosure: February 27, 2013 Vulnerability Type: Cross-Site Scripting CWE-79 CVE...

4.3CVSS6.9AI score0.01885EPSS
Exploits3
0day.today
0day.today
added 2013/03/01 12:0 a.m.68 views

Geeklog 1.8.2 Cross Site Scripting Vulnerability

Geeklog version 1.8.2 suffers from a cross site scripting vulnerability. Product: Geeklog Vendor: http://www.geeklog.net Vulnerable Versions: 1.8.2 and probably prior Tested Version: 1.8.2 Vendor Notification: February 6, 2013 Vendor Patch: February 20, 2013 Public Disclosure: February 27, 2013...

4.3CVSS6.2AI score0.01885EPSS
Exploits3
Packet Storm
Packet Storm
added 2013/02/28 12:0 a.m.54 views

Geeklog 1.8.2 Cross Site Scripting

Advisory ID: HTB23143 Product: Geeklog Vendor: http://www.geeklog.net Vulnerable Versions: 1.8.2 and probably prior Tested Version: 1.8.2 Vendor Notification: February 6, 2013 Vendor Patch: February 20, 2013 Public Disclosure: February 27, 2013 Vulnerability Type: Cross-Site Scripting CWE-79 CVE...

4.3CVSS6.6AI score0.01885EPSS
Exploits3
Rows per page
Query Builder