3 matches found
CVE-2022-22682
Improper neutralization of input during web page generation 'Cross-site Scripting' vulnerability in Event Management in Synology Calendar before 2.4.5-10930 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...
CVE-2022-22682
CVE-2022-22682 affects Synology Calendar: an XSS flaw in Event Management prior to version 2.4.5-10930. The issue arises from improper neutralization of input during web page generation, enabling an authenticated remote attacker to inject arbitrary script/HTML through unspecified vectors. Impact ...
CVE-2022-22682
Improper neutralization of input during web page generation 'Cross-site Scripting' vulnerability in Event Management in Synology Calendar before 2.4.5-10930 allows remote authenticated users to inject arbitrary web script or HTML via unspecified vectors...