CVE-2010-4794

by Fred · 26/04/2011

Multiple cross-site scripting (XSS) vulnerabilities in the JoomlaSeller JS Calendar (com_jscalendar) component 1.5.1 and 1.5.4 for Joomla! allow remote attackers to inject arbitrary web script or HTML via the (1) month and (2) year parameters in a jscalendar action to index.php. NOTE: some of these details are obtained from third party information.

Date published : 2011-04-26

http://www.securityfocus.com/bid/43902

http://www.exploit-db.com/exploits/15224

CVE-2010-4794

Related

Recent Posts

Categories

Latest CWE

CVE-2010-4794

Share this:

Related

Recent Posts

Categories

Tags

Latest CWE