You signed in with another tab or window. Reload to refresh your session.You signed out in another tab or window. Reload to refresh your session.You switched accounts on another tab or window. Reload to refresh your session.Dismiss alert
Thank you for the info Milad. We will have this fixed in our next release. I will keep this issue open until we have confirmed that the XSS has been removed.
Hi agian
Description :
XSS in module name will prompt in all other pages of X2CRM CE V6.9
Sample Pic:
Payload to use : "><img src=x onerror=prompt('@darknetguy');>
Tested on Windows 10 Firefox | Google Chrome // Cent-OS 7 Firefox | Chromium
BR,
Milad Fadavvi
The text was updated successfully, but these errors were encountered: