We just released Komento 2.0.7 to address a security issue where a remote attacker may be able to launch an xss attack in prior versions of Komento.

 

update notice: https://stackideas.com/blog/important-komento-2-0-7-security-fix