PHP iCalendar Cross Site Scripting

2006-06-30T00:00:00
ID SECURITYVULNS:DOC:13367
Type securityvulns
Reporter Securityvulns
Modified 2006-06-30T00:00:00

Description

>> K.S Advisory

>> irc.gigachat.net #kurdhack

>> Thanx : Netqurd,Azad,B3g0k,Fearless,Milex,Flot,Zay_Boy,PH,KHA,KCA and other my friends

>> Version : All Version

Proof Of Concept :

http://www.site.com/phpicalendar/rss/index.php?cal=[XSS]

Original Advisory :

http://kurdishsecurity.blogspot.com/2006/06/kurdish-security-12-php-icalendar.html

EoF