2 matches found
CVE-2018-10091
CVE-2018-10091 affects AudioCodes IP phone 420HD devices running firmware 2.2.12.126. The vulnerability is a stored XSS in the CGI interface (mainform.cgi), caused by insufficient input sanitization on user-controllable fields (e.g., Name, Office, Home, Mobile) on the Directory page. Evidence fro...
AudioCode 400HD Cross Site scripting
CVE-2018-10091 Stored XSS vulnerabilities in AudioCode IP phones Description The AudioCodes 400HD series of IP phones is a range of easy-to-use, feature-rich desktop devices for the service provider hosted services, enterprise IP telephony and contact center markets. Most of user inputs in the CG...