Loading
Cross Site Scripting (XSS) in Webmail Calender in IceWarp WebClient 10.3.5 allows remote attackers to inject arbitrary web script or HTML via the "p4" field.
Use CWE-79, Icewarp vendor hub and Webclient product page to widen CVE-2020-25925 into its surrounding weakness, vendor, and product context.
Compare it with CVE-2010-5335, CVE-2010-5334 and CVE-2023-43319 for nearby disclosures in the same product family.