Synology-SA-18:06 Calendar

Publish Time: 2018-02-12 15:12:26 UTC+8

Last Updated: 2018-02-12 15:12:26 UTC+8

Severity
Moderate
Status
Resolved

Abstract

A vulnerability allows remote authenticated users to inject arbitrary web script or HTML via a susceptible version of Calendar.

Affected Products

Product Severity Fixed Release Availability
Calendar Moderate Upgrade to 2.1.1-0502 or above.

Mitigation

None

Detail

Reserved

Acknowledgement

Muhammad Junaid Abdullah (https://twitter.com/snoviboy)

Revision

Revision Date Description
1 2018-02-12 Initial public release.