8x8: Reflected XSS on http://axa.dxi.eu

An older version of our ContactNow application did not adequately encode user input on one of the micro service endpoints utilized by registration...

8x8: [CRITICAL] Sql Injection on http://axa.dxi.eu

One of the micro service endpoints of the ContactNow application constructed a SQL query utilizing user provided parameters without utilizing a proper prepared statement...

8x8: Stored XSS agent_status

The functionality to set a user's status within the ContactNow application did not perform sufficient encoding when displayed to other user's of a given organization...