XSS Vulnerability in Horde Groupware 5.2.19 and 5.2.21: Exploiting the Color Field in Create Task List Action

XSS Vulnerability in Horde Groupware 5.2.19 and 5.2.21: Exploiting the Color Field in Create Task List Action

CVE-2017-16907 · LOW Severity

AV:N/AC:M/AU:S/C:N/I:P/A:N

In Horde Groupware 5.2.19 and 5.2.21, there is XSS via the Color field in a Create Task List action.

Learn more about our Web Application Penetration Testing UK.