1 results (0.002 seconds)

CVSS: 6.1EPSS: 0%CPEs: 1EXPL: 0

Cross Site Scripting (XSS) in Webmail Calendar in IceWarp 10.3.1 allows remote attackers to inject arbitrary web script or HTML via the "p4" field. Cross Site Scripting (XSS) en Webmail Calendar en IceWarp 10.3.1 permite a atacantes remotos inyectar scripts web o HTML arbitrarias a través del campo "p4". • http://icewrap.com https://medium.com/%40katikitala.sushmitha078/cve-2023-41013-789841dcad91 • CWE-79: Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting') •