Cross-site scripting vulnerability exists in Group Office prior to v6.6.182, prior to v6.7.64 and prior to v6.8.31, which may allow a remote authenticated attacker to execute an arbitrary script on the web browser of the user who is logging in to the product.
[
{
"vendor": "Intermesh BV",
"product": "Group Office",
"versions": [
{
"version": "prior to v6.6.182",
"status": "affected"
}
]
},
{
"vendor": "Intermesh BV",
"product": "Group Office",
"versions": [
{
"version": "prior to v6.7.64",
"status": "affected"
}
]
},
{
"vendor": "Intermesh BV",
"product": "Group Office",
"versions": [
{
"version": "prior to v6.8.31",
"status": "affected"
}
]
}
]