Geeklog Geeklog : Security vulnerabilities, CVEs xss, cross site scripting published in 2014

CVE-2013-1470

Cross-site scripting (XSS) vulnerability in calendar/index.php in the Calendar plugin in Geeklog before 1.8.2sr1 and 2.0.0 before 2.0.0rc2 allows remote attackers to inject arbitrary web script or HTML via the calendar_type parameter to submit.php.

Max CVSS

4.3

EPSS Score

0.31%

Published

2014-02-05

Updated

2017-08-29

1 vulnerabilities found

This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!

Accept Close

Geeklog » Geeklog : Security Vulnerabilities, CVEs, Published In 2014 (XSS)

CVE-2013-1470