Webcalendar@1.3.0 Security Vulnerabilities and Issues — Webcalendar@1.3.0 CVE List

Lucene search

Webcalendar ProjectWebcalendar1.3.0

2 matches found

CVE•added 2024/11/15 11:15 a.m.•44 views

CVE-2024-1097

A stored cross-site scripting (XSS) vulnerability exists in craigk5n/webcalendar version 1.3.0. The vulnerability occurs in the 'Report Name' input field while creating a new report. An attacker can inject malicious scripts, which are then executed in the context of other users who view the report,...

7.6CVSS5.9AI score0.00057EPSS

CVE•added 2024/01/25 9:15 p.m.•35 views

CVE-2024-22635

WebCalendar v1.3.0 was discovered to contain a reflected cross-site scripting (XSS) vulnerability via the component /WebCalendarvqsmnseug2/edit_entry.php.

6.1CVSS6AI score0.00207EPSS