Arbitrary Script Injection in GeniXCMS User Prompt Function
CVE-2017-5515 · LOW Severity
AV:N/AC:M/AU:S/C:N/I:P/A:N
Cross-site scripting (XSS) vulnerability in the user prompt function in GeniXCMS through 0.0.8 allows remote authenticated users to inject arbitrary web script or HTML via tag names.
Learn more about our Web App Pen Testing.