Cross-Site Scripting Vulnerability in HP Palm webOS Calendar Application
CVE-2011-2409

Currently unrated

Key Information:

Vendor: HP
Status: Palm Webos
Vendor: CVE Published:; 11 August 2011

What is CVE-2011-2409?

A cross-site scripting (XSS) vulnerability exists in the Calendar application of HP Palm webOS version 3.x prior to 3.0.2. This flaw allows remote attackers to inject arbitrary web scripts or HTML, potentially leading to unauthorized actions or data exposure when users interact with compromised content.

References

http://h20566.www2.hp.com/portal/site/hpsc/public/kb/docD...

vendor-advisoryx_refsource_HP

http://h20566.www2.hp.com/portal/site/hpsc/public/kb/docD...

vendor-advisoryx_refsource_HP

http://secunia.com/advisories/45543

third-party-advisoryx_refsource_SECUNIA

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability Reserved
Oct 3, 2022
Vulnerability published
Aug 11, 2011