Chiuchiu Sorin

**Name of the Vulnerable Software and Affected Versions** Mocca Calendar versions prior to 2.15 **Description** The Mocca Calendar application allows for cross-site scripting (XSS) via the background or text color field. **Recommendations** Update Mocca Calendar to version 2.15 or later.

**Name of the Vulnerable Software and Affected Versions** Mocca Calendar versions prior to 2.15 **Description** The Mocca Calendar application is susceptible to a cross-site scripting (XSS) issue. This occurs through a specially crafted title during calendar import. **Recommendations** Update Mocca Calendar to version 2.15 or later.