CVE-2007-6274
bcoos <1.0.10 - XSS
Title source: llmDescription
Multiple cross-site scripting (XSS) vulnerabilities in modules/ecal/display.php in the Event Calendar in bcoos 1.0.10 and earlier allow remote attackers to inject arbitrary web script or HTML via the (1) day or (2) year parameter.
Scores
EPSS
0.0029
EPSS Percentile
51.7%
Classification
CWE
CWE-79
Status
draft
Affected Products (1)
bcoos/bcoos
< 1.0.10
Timeline
Published
Dec 07, 2007
Tracked Since
Feb 18, 2026