Calcium Web Calendar vulnerable to Cross Site Scripting ~ Random stuff by yappare

Monday, December 6, 2010

Calcium Web Calendar vulnerable to Cross Site Scripting

on December 06, 2010 No comments

# Exploit Title: Calcium Web Calendar vulnerable to Cross Site Scripting
# Google Dork: intext:Calcium 4.0.4 Professional 25
# Date: 07 December 2010
# Author: p0pc0rn
# Software Link: Brown Bear Software http://www.brownbearsw.com
# Version: 4.0.4

XSS
====
http://site/something/Calcium40.pl?Op=ShowIt&CalendarName=[XSS]

Screenshot:
http://img256.imageshack.us/img256/3848/calcium.png

Status
======
Reported

Thanks

p0pc0rn

Random stuff by yappare

Monday, December 6, 2010

Calcium Web Calendar vulnerable to Cross Site Scripting

0 comments:

Text Widget

Popular Posts

Pages

Blog Archive

Recent Posts

Unordered List

Categories