https://www.exploit-db.com/exploits/25990
https://www.securityfocus.com/bid/88992
http://www.cnnvd.org.cn/web/xxk/ldxqById.tag?CNNVD=CNNVD-200507-209

CleverCopy是一款免费的站点架构和新闻发布程序。CleverCopy2.0和2.0a存在跨站脚本攻击(XSS)漏洞。远程攻击者可以通过calendar.php的yr参数注入任意Web脚本或HTML。

source: http://www.securityfocus.com/bid/14278/info

A cross-site scripting vulnerability affects Clever Copy. This issue is due to a failure of the application to properly sanitize user-supplied URI input that will be output in dynamically generated Web pages.

An attacker may leverage this issue to have arbitrary script code executed in the browser of an unsuspecting user. This may facilitate the theft of cookie-based authentication credentials as well as other attacks. 

http://www.example.com/calendar.php?mth=3&yr=2006"><script src="http://www.example.com/dev/injection/js.js"></script>

Clever Copy Clever Copy 2.0A

Clever Copy Clever Copy 2.0

来源:MISC
链接:http://lostmon.blogspot.com/2005/07/clever-copy-calendarphp-yr-variable.html