CVE-2017-16907

CVE-2017-16907

In Horde Groupware 5.2.19, there is XSS via the Color field in a Create Task List action.

Source: CVE-2017-16907