Zurmo cross-site scripting vulnerability (CNVD-2018-02168)
Zurmo is the United States Zurmo company's set of open source PHP-based customer relationship management system CRM. A cross-site scripting vulnerability exists in Zurmo version 3.2.3. A remote attacker can exploit this vulnerability by sending the 'latitude' or 'longitude' parameter to...