IBOS_4.4.3
Installation package: http://ibosupgrade.oss-cn-hangzhou.aliyuncs.com/release/pro/v4.4.3/IBOS_4.4.3_Pro_20180109162650_install.zip
In the installation interface, the company's full name is not filtered, resulting in cross-site scripting vulnerability
poc:<script>alert(/xss/)</script>
After the installation is complete, visit Personal Office -> Contacts and trigger cross-site scripting vulnerability


