EPSS
Percentile
53.2%
A reflected cross-site scripting (XSS) vulnerability in the parent parameter in the index page of vTiger CRM 7.4.0 allows attackers to execute arbitrary code in the context of a userβs browser via injecting a crafted payload.
vtiger.com
packetstormsecurity.com/files/180462/vTiger-CRM-7.4.0-Cross-Site-Scripting.html