Folks,
SecPod Research Team member (Veerendra G.G) found multiple XSS flaws in Wiccle Web Builder CMS and iWiccle CMS Community Builder M, which can be used to gain sensitive information and launch further attacks. Multiple flaws lies in multiple parameters while the web Application processes the user-supplied input and renders the content back to the client’s browser. The flaw can be exploited to inject arbitrary HTML codes and steal cookies and so on.
More information on the flaws can be found here.