Khajiitstolenothing

**Name of the Vulnerable Software and Affected Versions** EspoCRM version 5.6.4 **Description** The issue is related to stored XSS due to the lack of filtration of user-supplied data in the Knowledge base. A malicious attacker can inject JavaScript code in the `body` parameter during the "/api/v1/KnowledgeBaseArticle" API endpoint for knowledge-base record creation. **Recommendations** For EspoCRM version 5.6.4, as a temporary workaround, consider validating and sanitizing user input for the `body` parameter in the "/api/v1/KnowledgeBaseArticle" API endpoint to prevent JavaScript code injection. At the moment, there is no information about a newer version that contains a fix for this vulnerability.

**Name of the Vulnerable Software and Affected Versions** EspoCRM version 5.6.4 **Description** The issue allows a malicious authenticated attacker to brute-force a user password hash by 1 symbol at a time. This is achieved using specially crafted "api/v1/User?filterList" filters. **Recommendations** For EspoCRM version 5.6.4, as a temporary workaround, consider restricting access to the "api/v1/User?filterList" endpoint until a patch is available.

**Name of the Vulnerable Software and Affected Versions** EsponCRM versions prior to 5.6.4 **Description** The issue allows remote attackers to execute malicious JavaScript and inject arbitrary source code into target pages through a stored XSS attack. This attack involves storing a new stream message containing an XSS payload, which can then be triggered by clicking a malicious link on the Notifications page. **Recommendations** For versions prior to 5.6.4, update to version 5.6.4 or later to resolve the issue. As a temporary workaround, consider restricting access to the Notifications page and stream messages to minimize the risk of exploitation.