Cross Site Scripting Vulnerability at Google Appspot.ClickDesk” login page is vulnerable to XSS attack. Cross Site scripting attack is a critical issue in web application. When an attacker gets a user’s browser to execute his/her XSS code, the code will run within the security context (or zone) of the hosting web site. With this level of privilege, code has the ability to read (keylogging), modify and transmit any sensitive data accessible by the browser.
Source: https://thehackernews.com/2011/08/cross-site-scripting-vulnerability-at.html