A reflected cross-site scripting (XSS) vulnerability in...
High severity
Unreviewed
Published
Aug 29, 2024
to the GitHub Advisory Database
•
Updated Aug 29, 2024
Description
Published by the National Vulnerability Database
Aug 29, 2024
Published to the GitHub Advisory Database
Aug 29, 2024
Last updated
Aug 29, 2024
A reflected cross-site scripting (XSS) vulnerability in the parent parameter in the index page of vTiger CRM 7.4.0 allows attackers to execute arbitrary code in the context of a user's browser via injecting a crafted payload.
References