CVE-2012-0846

NONE EPSS 74.3%
Published Oct 8, 201213y ago · Modified Jun 16, 20262w ago
Find Similar
Published Oct 8, 2012 13y ago
Last Modified Jun 16, 2026 2w ago

Description

Cross-site scripting (XSS) vulnerability in Craig Knudsen WebCalendar 1.2.4 allows remote attackers to inject arbitrary web script or HTML via the Location variable.

Threat Intelligence

EPSS Exploit Probability
74.3% percentile
Exploit & Patch Status
Public Exploit Known
No Patch Available

Weaknesses 1

CWE-79 Cross-site Scripting Injection

Affected Products 1

VendorProductVersionRange
k5nwebcalendar1.2.4any

References 9

Remediation

No remediation data recorded yet

Check vendor advisories and the NVD entry for patch availability.