Unrated severityNVD Advisory· Published Nov 14, 2013· Updated Apr 29, 2026

CVE-2013-6793

Description

Multiple cross-site scripting (XSS) vulnerabilities in the Calendar module in Olat 7.8.0.1 (b20130821 N1) allow remote attackers to inject arbitrary web script or HTML via the (1) event name or (2) date field.

Affected products

Olat/Olat
cpe:2.3:a:olat:olat:7.8.0.1:*:*:*:*:*:*:*

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

packetstormsecurity.com/files/123825/Olat-CMS-7.8.0.1-Cross-Site-Scripting.htmlnvdExploit
seclists.org/bugtraq/2013/Oct/154nvdExploit
www.exploit-db.com/exploits/29279nvdExploit
www.vulnerability-lab.com/get_content.phpnvdExploit
osvdb.org/99075nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.007
exploit	0.030
kev	0.000
patch	0.000
ransomware	0.000