CVE-2020-21088
CVE-2020-21088
Cross Site Scripting (XSS) in X2engine X2CRM v7.1 and older allows remote attackers to obtain sensitive information by injecting arbitrary web script or HTML via the "First Name" and "Last Name" fields in "/index.php/contacts/create page"
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →