Arbitrary Code Injection via start Parameter in Topic Calendar 1.0.1 Module for phpBB
CVE-2005-0872 · MEDIUM Severity
AV:N/AC:M/AU:N/C:N/I:P/A:N
Cross-site scripting (XSS) vulnerability in calendar_scheduler.php in the Topic Calendar 1.0.1 module for phpBB allows remote attackers to inject arbitrary web script or HTML via the start parameter.
Learn more about our Web App Pen Testing.