Shodan
Vulnerabilities
Vulnerable Software

Vulnerability Details CVE-2017-16906

In Horde Groupware 5.2.19-5.2.22, there is XSS via the URL field in a "Calendar -> New Event" action.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.002
EPSS Ranking 48.1%
CVSS Severity
CVSS v3 Score 5.4
CVSS v2 Score 3.5
Products affected by CVE-2017-16906
  • Horde » Groupware » Version: 5.2.19
    cpe:2.3:a:horde:groupware:5.2.19
  • Horde » Groupware » Version: 5.2.20
    cpe:2.3:a:horde:groupware:5.2.20
  • Horde » Groupware » Version: 5.2.21
    cpe:2.3:a:horde:groupware:5.2.21
  • Horde » Groupware » Version: 5.2.22
    cpe:2.3:a:horde:groupware:5.2.22


Products
Pricing
Contact Us

Shodan ® - All rights reserved