Vulnerabilities > Brown Bear Software

DATE CVE VULNERABILITY TITLE RISK
2008-05-29 CVE-2008-2507 Cross-Site Scripting vulnerability in Brown Bear Software Calcium 3.10/4.0.4
Cross-site scripting (XSS) vulnerability in Calcium40.pl in Brown Bear Software Calcium 3.10 and 4.0.4 allows remote attackers to inject arbitrary web script or HTML via the CalendarName parameter in a ShowIt action.
4.3
2006-02-28 CVE-2006-0924 Cross-Site Scripting vulnerability in Brown Bear Software Ical 3.10
Cross-site scripting (XSS) vulnerability in Brown Bear iCal 3.10 allows remote attackers to inject arbitrary web script or HTML via the Calendar Text field when a new event is added.
4.3
2006-02-25 CVE-2006-0889 Cross-Site Scripting vulnerability in Brown Bear Software Calcium 3.10.1
Cross-site scripting (XSS) vulnerability in Calcium 3.10.1 allows remote attackers to inject arbitrary web script or HTML via the EventText parameter.
4.3
2003-12-31 CVE-2003-1263 Denial Of Service vulnerability in Brown Bear Software Ical 3.7
ICAL.EXE in iCal 3.7 allows remote attackers to cause a denial of service (crash) via a malformed HTTP request, possibly due to an invalid method name.
network
low complexity
brown-bear-software
5.0