ssossossossosso

Forums

Forums OroCRM OroCRM – Security Stored XSS in email field of leads

This topic contains 3 replies, has 2 voices, and was last updated by  Ivan Klymenko 3 years, 3 months ago.

Viewing 3 replies - 1 through 3 (of 3 total)
  • Author
    Replies
  • #25161

    Ivan Klymenko
    Keymaster

    Hello. Yes, it was fixed in 1.3.2 CE and 1.5.1 EE

    #25162

    Spurgeon
    Participant

    Hi Ivan, Greetings! Thanks for the update! Is the demo at demo.orocrm.com updated, coz it was vulnerable when checked yesterday.

    #25163

    Ivan Klymenko
    Keymaster

    Hi spurgeonbj, thanks for this catch. demo.orocrm.com was not updated yet. We are going to update it to the latest version soon.

Viewing 3 replies - 1 through 3 (of 3 total)

You must be logged in to reply to this topic.