XSS and User Data Corruption in PHP Event Calendar
Summary for XSS and User Data Corruption in PHP Event Calendar
- Vulnerability
- XSS and User Data Corruption in PHP Event Calendar
- Discovered
- 2006.02.06
- Last Update
- 2006.02.16 Exploitation code published
- ID
- EV0063
- CVE
- CVE-2006-0657
- Risk Level
- low
- Type
- Cross Site Scripting
- Status
- Unpatched. No reply from developer(s)
- Vendor
- Softcomplex
- Vulnerable Software
- PHP Event Calendar
- Version
- 1.5
- PoC/Exploit
- Available
- Solution
- Not available
- Discovered by
- Aliaksandr Hartsuyeu (eVuln.com)
Order Source Code Review
Prevent attacks by PHP code review of a website made by Aliaksandr Hartsuyeu.The work will be done by experts in web security.