Stored XSS vulnerability in eGroupware Community Edition prior to 16.1.20170922 allows an unauthenticated remote malicious user to inject JavaScript via the User-Agent HTTP header, which is mishandled during rendering by the application administrator.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
egroupware egroupware |