2024-10-07 00:00:00
mitre
PUBLISHED
A reflected cross-site scripting (XSS) vulnerability in Elaines Realtime CRM Automation v6.18.17 allows attackers to execute arbitrary JavaScript code in the web browser of a user via injecting a crafted payload into the dialog parameter at wrapper_dialog.php.