EPSS
Percentile
31.9%
AvantFAX 3.3.3 has XSS via an arbitrary parameter name to the default URI, as demonstrated by a parameter whose name contains a SCRIPT element and whose value is 1.
packetstormsecurity.com/files/145776/AvantFAX-3.3.3-Cross-Site-Scripting.html