CVE-2018-11628

Data input into EMS Master Calendar before 8.0.0.201805210 via URL parameters is not properly sanitized, allowing malicious attackers to send a crafted URL for XSS.
Configurations

Configuration 1

cpe:2.3:a:emssoftware:ems_master_calendar:*:*:*:*:*:*:*:*

Information

Published : 2018-06-01 03:29

Updated : 2018-07-03 03:56


NVD link : CVE-2018-11628

Mitre link : CVE-2018-11628

Products Affected
No products.
CWE