We just released Komento 2.0.7 to address a security issue where a remote attacker may be able to launch an xss attack in prior versions of Komento.
If you are using any versions prior to 2.0.7, kindly update to the latest version as soon as you can. If you need any assistance with updating to the latest version, please get in touch with us on our forums and we'll assist you with the update.