Security X2Engine CRM 4.2.1 Cross Site Scripting September 24, 2014 007admin Leave a comment X2Engine CRM version 4.2.1 suffers from a cross site scripting vulnerability.