Arbitrary Script Injection in GeniXCMS User Prompt Function

Arbitrary Script Injection in GeniXCMS User Prompt Function

CVE-2017-5515 · LOW Severity

AV:N/AC:M/AU:S/C:N/I:P/A:N

Cross-site scripting (XSS) vulnerability in the user prompt function in GeniXCMS through 0.0.8 allows remote authenticated users to inject arbitrary web script or HTML via tag names.

Learn more about our Web App Pen Testing.