2 matches found
CVE-2014-7291
CVE-2014-7291 affects Springshare LibCal 2.0 in the api_events.php endpoint. Vulnerable parameters are (1) m and (2) cid, enabling remote attackers to inject arbitrary web script or HTML (XSS). The vulnerability is described across multiple sources as Cross-Site Scripting in LibCal 2.0, with base...
Springshare LibCal 2.0 Cross Site Scripting
Exploit Title: Springshare LibCal XSS Cross-Site Scripting Vulnerability Product: LibCal Vendor: Springshare Vulnerable Versions: 2.0 Tested Version: 2.0 Advisory Publication: Nov 25, 2014 Latest Update: Nov 25, 2014 Vulnerability Type: Cross-Site Scripting CWE-79 CVE Reference: CVE-2014-7291 CVS...