KEYNTO Team Password Manager 1.5.0 allows XSS because data saved from websites is mishandled in the online vault.