Security Advisory

CVE-2022-4455

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2022-12-13 00:00:00

Last updated 2025-12-15 18:35:15

Assigner VulDB

State PUBLISHED

Description

A vulnerability was identified in sproctor php-calendar up to 2.0.13. This impacts an unknown function of the file index.php. Such manipulation of the argument $_SERVER[PHP_SELF] leads to cross site scripting. The attack may be launched remotely. The name of the patch is a2941109b42201c19733127ced763e270a357809. It is advisable to implement a patch to correct this issue.

← Browse all CVEs View on cve.org ↗