Publish Time: 2019-01-15 15:37:50 UTC+8
Last Updated: 2019-06-30 23:06:31 UTC+8
Abstract
A vulnerability allows remote authenticated users to inject arbitrary web script or HTML via a susceptible version of Calendar.
Affected Products
Product | Severity | Fixed Release Availability |
---|---|---|
Calendar 2.3 | Moderate | Upgrade to 2.3.0-0615 or above. |
Mitigation
None
Detail
Revision
Revision | Date | Description |
---|---|---|
1 | 2019-01-15 | Initial public release. |
2 | 2019-06-30 | Disclosed vulnerability details. |