2024-08-29 00:00:00
mitre
PUBLISHED
A reflected cross-site scripting (XSS) vulnerability in the parent parameter in the index page of vTiger CRM 7.4.0 allows attackers to execute arbitrary code in the context of a users browser via injecting a crafted payload.