CVE-2024-1097 | craigk5n webcalendar up to 1.3.0 Report Name cross site scripting

Inserito da Angelo Barbosa | Nov 15, 2024 | CVE

A vulnerability, which was classified as problematic, has been found in craigk5n webcalendar up to 1.3.0. Affected by this issue is some unknown functionality. The manipulation of the argument Report Name leads to cross site scripting.

This vulnerability is handled as CVE-2024-1097. The attack may be launched remotely. There is no exploit available.

CVE-2024-1097 | craigk5n webcalendar up to 1.3.0 Report Name cross site scripting

Post correlati

CVE-2024-46947 | Northern.tech Mender up to 3.6.5/3.7.6 server-side request forgery

CVE-2024-47854 | Veritas Data Insight up to 7.0 HTTP Request cross site scripting

CVE-2024-29460 | PX4 Autopilot 1.14.0 Flight Path mission_block.cpp denial of service

CVE-2024-32454 | Wappointment Appointment Bookings for Zoom GoogleMeet and more Plugin server-side request forgery