EPSS
Percentile
76.0%
Data input into EMS Master Calendar before 8.0.0.201805210 via URL parameters is not properly sanitized, allowing malicious attackers to send a crafted URL for XSS.
www.securityfocus.com/bid/104428
docs.emssoftware.com/Content/V44.1_ReleaseNotes.htm
gist.github.com/barrett092/c70752ca6960b8b9616a03006f291a28
www.exploit-db.com/exploits/44831/