Intelligent global technology Ltd, igt+ - DOM-based Cross-Site Scripting
Special characters of IGT search function in igt+ are not filtered in specific fields, which allow remote authenticated attackers can inject malicious JavaScript and carry out DOM-based XSS (Cross-site scripting) attacks.