Unrated severityNVD Advisory· Published Feb 15, 2007· Updated Jun 16, 2026
CVE-2007-0952
CVE-2007-0952
Description
Multiple cross-site scripting (XSS) vulnerabilities in Scriptsez.net Virtual Calendar allow remote attackers to inject arbitrary web script or HTML via the (1) t and (2) yr parameters, and the (3) sho parameter when the m parameter is outside the intended range.
Affected products
2cpe:2.3:a:scriptsez.net:virtual_calendar:*:*:*:*:*:*:*:*+ 1 more
- cpe:2.3:a:scriptsez.net:virtual_calendar:*:*:*:*:*:*:*:*
- (no CPE)
Patches
Vulnerability mechanics
References
4News mentions
0No linked articles in our index yet.