CVE-2006-6824
Multiple cross-site scripting XSS vulnerabilities in Jim Hu and Chad Little PHP iCalendar 2.23 rc1 and earlier allow remote attackers to inject arbitrary web script or HTML via the 1 getdate parameter in a day.php, b month.php, c year.php, d week.php, e search.php, f rss/index.php, g print.php, a...