Vulnerabilities > Zurmo > Zurmo CRM > 3.2.3

DATE CVE VULNERABILITY TITLE RISK
2017-12-31 CVE-2017-18004 Cross-site Scripting vulnerability in Zurmo CRM 3.2.3
Zurmo 3.2.3 allows XSS via the latitude or longitude parameter to maps/default/mapAndPoint.
network
low complexity
zurmo CWE-79
5.4
5.4