AI Score
Confidence
High
EPSS
Percentile
20.8%
SSVC
Exploitation
poc
Automatable
no
Technical Impact
partial
Stored Cross-Site Scripting (XSS) vulnerability in the Company field in the “Request a Quote” Section of Small CRM v3.0 allows an attacker to store and execute malicious javascript code in the Admin panel which leads to Admin account takeover.