Step to reproduce
- Open into
https://demo.corebos.com
and navigate to settings > Users.
- Add XSS payload into Entity Name.
- Now navigate to contact > Create contact > Add contact and click on more information > click add opportunity.
- On Assign to drop menu select XSS payload and save.
XSS Payload= "><img src>