XSS on XRMS- open source CRM Feb 28 2008 05:24PM
vijayv cascentral com
XRMS: An open source web enabled LAMP based CRM.

Vulnerability: Confirmation messages upon updates in XRMS are clear text passed across in the URL. Simple test of injection of a script resulted in exposing cross site scripting vulnerability.

[ reply ]


 

Privacy Statement
Copyright 2010, SecurityFocus