1.8.2

DATE	CVE	VULNERABILITY TITLE	RISK
2014-02-05	CVE-2013-1470	Cross-Site Scripting vulnerability in Geeklog 1.8.2/2.0.0 Cross-site scripting (XSS) vulnerability in calendar/index.php in the Calendar plugin in Geeklog before 1.8.2sr1 and 2.0.0 before 2.0.0rc2 allows remote attackers to inject arbitrary web script or HTML via the calendar_type parameter to submit.php. network geeklog CWE-79	4.3

CVE is a registered MITRE Corporation trademark and MITRE's CVE website is the authoritative source of CVE content. CWE is a registered MITRE Corporation trademark and MITRE's CWE website is the authoritative source of CWE content.