RSS   Podatności dla 'Avantfax'   RSS

2018-01-10
 
CVE-2017-18024

CWE-79
 

 
AvantFAX 3.3.3 has XSS via an arbitrary parameter name to the default URI, as demonstrated by a parameter whose name contains a SCRIPT element and whose value is 1.

 


Copyright 2020, cxsecurity.com

 

Back to Top