Vulnerability CVE-2019-18345

Vulnerability CVE-2019-18345

Published: 2019-12-12

Description:

Type:

(Improper Neutralization of Input During Web Page Generation ('Cross-site Scripting'))

CVSS Base Score	Impact Subscore	Exploitability Subscore
4.3/10	2.9/10	8.6/10

Affected software
Davical -> Davical

http://packetstormsecurity.com/files/155630/DAViCal-CalDAV-Server-1.1.8-Reflective-Cross-Site-Scripting.html

https://gitlab.com/davical-project/davical/blob/master/ChangeLog

https://hackdefense.com/publications/cve-2019-18345-davical-caldav-server-vulnerability/

https://lists.debian.org/debian-lts-announce/2019/12/msg00016.html

https://seclists.org/bugtraq/2019/Dec/30

https://wiki.davical.org/index.php/Main_Page

https://www.davical.org/

https://www.debian.org/security/2019/dsa-4582