CVE-2006-6228

Published: Dec 2, 2006Modified: Apr 23, 2026

6.8

Vector

AV:N/AC:M/Au:N/C:P/I:P/A:P

Exploitability: 8.6 / Impact: 6.4

Source: NVD

Description

Cross-site scripting (XSS) vulnerability in Codewalkers ltwCalendar (aka PHP Event Calendar) before 4.2.1 allows remote attackers to inject arbitrary HTML or web script via unknown vectors.

Affected (2)

Products: Codewalkers: Ltwcalendar

Codewalkers

1 product

Ltwcalendar

Configuration A

2 vulnerable

Vulnerable Software	Affected Versions
Codewalkers Ltwcalendar	Version 4.1.3
Codewalkers Ltwcalendar	Version 4.2

References (2)

http://ltwcalendar.sourceforge.net/changelog.php

Source: cve@mitre.org

http://ltwcalendar.sourceforge.net/changelog.php

Source: af854a3a-2127-422b-91ae-364da2661108

Timeline

No history available yet.