PT-2019-12510 · Synology · Synology Calendar
Name of the Vulnerable Software and Affected Versions: Synology Calendar versions prior to 2.3.0-0615 Description: A cross-site scripting XSS issue exists, allowing remote attackers to inject arbitrary web script or HTML via the title parameter in the Event Editor. Recommendations: For versions...