X2Engine CRM 4.2.1 Cross Site Scripting
Affected Vendor: http://www.x2engine.com/ Date: 24/09/2014 Discovered by: JoeV Type of vulnerability: XSS Tested on: Windows 7 Version : 4.2.1 Description: X2Engine CRM v 3.3.3 is susceptible to Cross Site Scripting attack. Proof of Concept PoC: --------------------------- POST...