Vulnerabilities

CVE-2020-35707

by Fred · 25/12/2020

Daybyday 2.1.0 allows stored XSS via the Company Name parameter to the New Client screen.

Date published : 2020-12-25

https://github.com/Bottelet/DaybydayCRM/releases

https://tufangungor.github.io/exploit/2020/12/12/daybydaycrm-2.1.0-multiple-stored-xss.html

Similar

Tags: Cybersecurity Alert