Vulnerabilities > Luxsoft > Medium

DATE CVE VULNERABILITY TITLE RISK
2023-11-20 CVE-2023-47175 Cross-site Scripting vulnerability in Luxsoft Luxcal web Calendar
Cross-site scripting vulnerability in LuxCal Web Calendar prior to 5.2.4M (MySQL version) and LuxCal Web Calendar prior to 5.2.4L (SQLite version) allows a remote unauthenticated attacker to execute an arbitrary script on the web browser of the user who is accessing the product.
network
low complexity
luxsoft CWE-79
6.1
6.1
2023-08-21 CVE-2023-39543 Cross-site Scripting vulnerability in Luxsoft Luxcal web Calendar
Cross-site scripting vulnerability in LuxCal Web Calendar prior to 5.2.3M (MySQL version) and LuxCal Web Calendar prior to 5.2.3L (SQLite version) allows a remote unauthenticated attacker to execute an arbitrary script on the web browser of the user who is using the product.
network
low complexity
luxsoft CWE-79
6.1
6.1