3 matches found
CVE-2021-23935
OX App Suite through 7.10.4 allows XSS via an appointment in which the location contains JavaScript code...
CVE-2021-23935
OX App Suite through 7.10.4 allows XSS via an appointment in which the location contains JavaScript code...
CVE-2021-23935
OX App Suite (up to 7.10.4) contains a cross-site scripting (XSS) vulnerability exploited by placing JavaScript code in the location field of an appointment. This can lead to injected scripts being executed in a victim’s browser. Public details confirm the flaw and affected version; no patch/work...