Vulnerabilities (CVE)

Filtered by vendor C-3.co.jp Subscribe

Filtered by product Webcalenderc3

Total 2 CVE

CVE	Vendors	Products	Updated	CVSS v2	CVSS v3
CVE-2010-0348	1 C-3.co.jp	1 Webcalenderc3	2024-02-04	5.0 MEDIUM	N/A
Directory traversal vulnerability in C3 Corp. WebCalenderC3 0.32 and earlier allows remote attackers to read arbitrary files via unknown vectors.
CVE-2010-0349	1 C-3.co.jp	1 Webcalenderc3	2024-02-04	4.3 MEDIUM	N/A
Cross-site scripting (XSS) vulnerability in C3 Corp. WebCalenderC3 0.32 and earlier allows remote attackers to inject arbitrary web script or HTML via unknown vectors. NOTE: this issue could not be reproduced by the vendor, but a patch was provided anyway. The original researcher is reliable.