A reflected cross site scripting vulnerability was found in synnefoclient for Synnefo IMS 2015. The vulnerability has been discovered in the plan_name parameter on the request to fetch the package details for the logged in user. Request method is GET.
1aa548f792cd26dae870dc249c5997d19468b01ddea5005e482ca88a5e16bec8