Arbitrary Code Injection via start Parameter in Topic Calendar 1.0.1 Module for phpBB

Arbitrary Code Injection via start Parameter in Topic Calendar 1.0.1 Module for phpBB

CVE-2005-0872 · MEDIUM Severity

AV:N/AC:M/AU:N/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in calendar_scheduler.php in the Topic Calendar 1.0.1 module for phpBB allows remote attackers to inject arbitrary web script or HTML via the start parameter.

Learn more about our Web App Pen Testing.