1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
|
Candidate: CVE-2013-1421
PublicDate: 2014-04-22
References:
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2013-1421
http://www.openwall.com/lists/oss-security/2013/07/22
Description:
Cross-site scripting (XSS) vulnerability in Craig Knudsen WebCalendar
before 1.2.5, 1.2.6, and other versions before 1.2.7 allows remote
attackers to inject arbitrary web script or HTML via the Category Name
field to category.php.
Ubuntu-Description:
Notes:
Bugs:
Priority: medium
Discovered-by:
Assigned-to:
Patches_webcalendar:
upstream_webcalendar: needs-triage
lucid_webcalendar: ignored (reached end-of-life)
precise_webcalendar: DNE
quantal_webcalendar: DNE
raring_webcalendar: DNE
devel_webcalendar: DNE
|