CVE-2005-2326

Description

Cross-site scripting (XSS) vulnerability in Clever Copy 2.0 and 2.0a allows remote attackers to inject arbitrary web script or HTML via the yr parameter to calendar.php.

Affected Software
References

Software	From	Fixed in
clever_copy / clever_copy	2.0a	2.0a.x
clever_copy / clever_copy	2.0	2.0.x

http://lostmon.blogspot.com/2005/07/clever-copy-calendarphp-yr-variable.html

Severity: Low

CVE: CVE-2005-2326
Published: Jul 19, 2005
Updated: Apr 13, 2023
Exploit:

Severity: Low
Score: 4.3
AV:N/AC:M/Au:N/C:N/I:P/A:N

CVE-2005-2326

Description

Details

CVSS v2