Security Advisory

CVE-2025-0930

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2025-01-31 13:45:09

Last updated 2025-01-31 14:52:24

Assigner INCIBE

State PUBLISHED

Description

Reflected Cross-Site Scripting (XSS) in TeamCal Neo, version 3.8.2. This allows an attacker to execute malicious JavaScript code, after injecting code via the ‘abs’ parameter in ‘/teamcal/src/index.php’.

← Browse all CVEs View on cve.org ↗