TUCoPS :: HP Unsorted W :: c07-1396.htm

WebCalendar >=1.0 Cross-Site Scripting Vulnerabilities
WebCalendar >=1.0 Cross-Site Scripting Vulnerabilities
WebCalendar >=1.0 Cross-Site Scripting Vulnerabilities


               WebCalendar >=1.0 Cross-Site Scripting Vulnerabilities

|=---=[ WebCalendar >=1.0 Cross-Site Scripting Vulnerabilities ]---=|
|=-----------------------------------------------------------------=|
|=---------------=[ 7all<7all7_at_163.com> ]=----------------------=|
|=-----------------------------------------------------------------=|
|=---------------=[ Copyright:www.cciss.cn ]=----------------------=| 

--]Intro
Vul Version:WebCalendar >=1.0
Home Page: http://webcalendar.sourceforge.net/ 
Vul Autor:7all

--]Remark
Today,i'm browse a website and find this vulnerability:)

--]Exploit
http://[website]/calendar/export_handler.php?format=&id=200 
http://[website]/calendar/export_handler.php?format=&id=200

TUCoPS is optimized to look best in Firefox® on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2024 AOH