ssossossosso

Forums

Covering OroCRM topics, including community updates and company announcements.  Subscribe

Open-Source CRM software Forums OroCRM OroCRM – Security Stored XSS in email field of leads

This topic contains 3 replies, has 2 voices, and was last updated by Ivan Klymenko Ivan Klymenko 2 years, 5 months ago.

Viewing 3 replies - 1 through 3 (of 3 total)
  • Author
    Replies
  • #6265
    Ivan Klymenko
    Ivan Klymenko
    Oro Core

    Hello. Yes, it was fixed in 1.3.2 CE and 1.5.1 EE

    #6267
    Spurgeon
    Spurgeon
    Participant

    Hi Ivan, Greetings! Thanks for the update! Is the demo at demo.orocrm.com updated, coz it was vulnerable when checked yesterday.

    #6268
    Ivan Klymenko
    Ivan Klymenko
    Oro Core

    Hi spurgeonbj, thanks for this catch. demo.orocrm.com was not updated yet. We are going to update it to the latest version soon.

Viewing 3 replies - 1 through 3 (of 3 total)

You must be logged in to reply to this topic.