CVE-2017-16906

Published November 20th, 2017

View on NVD ↗

CVSS v3

N/A

CVSS v2

3.5

LOW

Affected

2

PROJECTS

Description

In Horde Groupware 5.2.19-5.2.22, there is XSS via the URL field in a "Calendar -> New Event" action.

starnightcyber/Miscellaneous

百宝箱

GitHub

463

horde/kronolith

A web based calendar

GitHub

10