AOH :: HP Unsorted X :: BX2158.HTM

XRMS - open source CRM XSS



XSS on XRMS- open source CRM
XSS on XRMS- open source CRM



XRMS: An open source web enabled LAMP based CRM.=0D
Vulnerability: Confirmation messages upon updates in XRMS are clear text passed across in the URL. Simple test of injection of a script resulted in exposing cross site scripting vulnerability.

The entire AOH site is optimized to look best in Firefox® 3 on a widescreen monitor (1440x900 or better).
Site design & layout copyright © 1986-2014 AOH
We do not send spam. If you have received spam bearing an artofhacking.com email address, please forward it with full headers to abuse@artofhacking.com.