: Improper Neutralization of Input During Web Page Generation (βCross-site Scriptingβ) vulnerability in prefs.asp of Telos Automated Message Handling System allows a remote attacker to inject arbitrary script into an AMHS session. This issue affects: Telos Automated Message Handling System versions prior to 4.1.5.5.
[
{
"product": "Automated Message Handling System",
"vendor": "Telos",
"versions": [
{
"lessThan": "4.1.5.5",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]