OpenCRX version 5.2.0 is vulnerable to HTML injection via Activity Saved Search Creation.
opencrx opencrx 5.2.0