WebCalendar versions 1.2.5 and 1.2.6 contain a Persistent XSS in the Category Name field. Version 1.2.5 was tested and then compared with 1.2.6 to determine that the vulnerability is in both versions. Please see screen shots below.
Twitter feed"The Equifax breach scope reminds me of a Naked Gun joke: "There's a 99/100 chance I'm in the clear but there's only… https://t.co/P5i162lFge"2 days ago"A little cyber breach humor (from The New Yorker magazine). https://t.co/QaEQQbnL8d"2 days ago"Probably more interesting than the breach itself.... https://t.co/Aj6GBR65Og"3 days ago"I try not to post too many breaches these days but this one is particularly egregious. https://t.co/GO43YxSeKb"3 days ago"Ty @DC_BHV attendees 4 awesome reviews @defcon. No vendor names, no vulns discl. Only Q&A slide, back story, & rec 2 isolate & DiD all PACS."42 days ago"Neat video on a physical security safe hack. Safe gap vuln reminds me of same vuln in Masterlock dial/combo locks: https://t.co/EdSjiFPAKd"49 days ago"Here's a debate: very busy NYC Starbucks protected it's bathroom w/12345. Is keypad pwd length & "complexity" OK given resource & attackers?"50 days ago"Not the best password.... https://t.co/jAIMK3GjUN"52 days ago"Looking forward to speaking at DefCon this year in the BioHacking Village on some vulnerable healthcare software. https://t.co/B7CyvOBikP"53 days ago"Looking forward to moderating a panel at this @owaspnyc event. Hope to see you there: https://t.co/auqeD30mfT https://t.co/7aP0J6aMw0"88 days ago