Legend: !important +added -removed ~changed #fixed
Info: access to the beta versions and pre-releases are reserved to users with a valid pro subscription.
iCagenda™ is distributed under the terms of the GNU General Public License version 3 or later; see LICENSE.txt.
iCagenda 3.7.4 (2018.09.26) Security Release
#
[SECURITY][MEDIUM] Exploit type: XSS- Severity: Low
- Versions: 3.6.7 through 3.7.3
- Description: Inadequate input filtering on the list of events page, when frontend search filters enable. This may lead to reflective XSS via injection of arbitrary parameters and/or values on the current page url.
