2 matches found
CVE-2023-25599
A vulnerability in the conferencing component of Mitel MiVoice Connect through 19.3 SP2, 22.24.1500.0 could allow an unauthenticated attacker to conduct a reflected cross-site scripting XSS attack due to insufficient validation for the testpresenter.php page. A successful exploit could allow an...
CVE-2023-25599
The CVE-2023-25599 issue affects Mitel MiVoice Connect (conferencing component) and is caused by insufficient validation on the test_presenter.php page, enabling unauthenticated, reflected XSS. Affected versions include Mitel MiVoice Connect through 19.3 SP2 and 22.24.1500.0. Consequences stated ...