Unrated severityNVD Advisory· Published Oct 8, 2012· Updated Jun 16, 2026
CVE-2012-0846
CVE-2012-0846
Description
Cross-site scripting (XSS) vulnerability in Craig Knudsen WebCalendar 1.2.4 allows remote attackers to inject arbitrary web script or HTML via the Location variable.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1- Range: =1.2.4
Patches
Vulnerability mechanics
References
9- archives.neohapsis.com/archives/bugtraq/2012-01/0129.htmlnvdExploit
- sourceforge.net/tracker/nvd
- sourceforge.net/tracker/nvd
- www.openwall.com/lists/oss-security/2012/02/11/2nvd
- www.openwall.com/lists/oss-security/2012/02/12/1nvd
- www.openwall.com/lists/oss-security/2012/02/12/3nvd
- www.openwall.com/lists/oss-security/2012/02/13/6nvd
- www.securityfocus.com/bid/51600nvd
- exchange.xforce.ibmcloud.com/vulnerabilities/72563nvd
News mentions
0No linked articles in our index yet.