cvedb.io
CVE-2017-9072
MEDIUM · CVSS 6.1
EPSS exploitation probability: 0%
Published 2017-05-18T17:29:00.117 · Last modified 2026-06-17T01:27:26.347

Summary

Two CalendarXP products have XSS in common parts of HTML files. CalendarXP FlatCalendarXP through 9.9.290 has XSS in iflateng.htm and nflateng.htm. CalendarXP PopCalendarXP through 9.8.308 has XSS in ipopeng.htm and npopeng.htm.

Affected products

calendarxp — flatcalendarxp

Does this affect you?

Add your gear to cvedb and we'll alert you only when calendarxp ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.