Gal Nagli

**Name of the Vulnerable Software and Affected Versions** Dynamics 365 FastTrack Implementation Assets (affected versions not specified) **Description** The issue concerns the exposure of private personal information to unauthorized actors in Dynamics 365 FastTrack Implementation Assets, allowing attackers to disclose information over a network. **Recommendations** At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Name of the Vulnerable Software and Affected Versions: Priority Enterprise Management System version v8.00 Description: The issue concerns a Cross Site Scripting (XSS) flaw in the "Reset Password" page form, allowing attackers to execute javascript on behalf of the victim. This can be achieved by sending a malicious URL or by directing the victim to a malicious site. Recommendations: For Priority Enterprise Management System version v8.00, update the system to a version that includes a fix for the XSS issue in the "Reset Password" page form, or as a temporary workaround, consider restricting access to the "Reset Password" functionality until a patch is available.