CVE-2018-19506



Zurmo 3.2.4 has XSS via an admin's use of the name parameter in the reports section, aka the app/index.php/reports/default/details?id=1 URI.

Don't forget to share

You may also like...

Leave a Reply

Your email address will not be published. Required fields are marked *