Vulnerability
Description
Cross-site scripting(XSS) vulnerability has been found in Triconsole Datepicker Calendar to untill version 3.77 in calendar_form.php
Attackers can read authentication cookies that are still active, which can be used to perform further attacks such as reading browser history, directory listings, and file contents.
Recommendations
- Update Triconsole to the latest version
Experience the Beagle Security platform
Unlock one full penetration test and all Advanced plan features free for 10 days
