AOH :: HP Unsorted W :: C07-1396.HTM

WebCalendar >=1.0 Cross-Site Scripting Vulnerabilities



WebCalendar >=1.0 Cross-Site Scripting Vulnerabilities
WebCalendar >=1.0 Cross-Site Scripting Vulnerabilities



               WebCalendar >=1.0 Cross-Site Scripting Vulnerabilities

|=---=[ WebCalendar >=1.0 Cross-Site Scripting Vulnerabilities ]---=|
|=-----------------------------------------------------------------=|
|=---------------=[ 7all<7all7_at_163.com> ]=----------------------=|
|=-----------------------------------------------------------------=|
|=---------------=[ Copyright:www.cciss.cn ]=----------------------=| 

--]Intro
Vul Version:WebCalendar >=1.0
Home Page: http://webcalendar.sourceforge.net/ 
Vul Autor:7all

--]Remark
Today,i'm browse a website and find this vulnerability:)

--]Exploit
http://[website]/calendar/export_handler.php?format=&id=200 
http://[website]/calendar/export_handler.php?format=&id=200 

The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.