2 matches found
CVE-2018-14906
The Web server in 3CX version 15.5.8801.3 is vulnerable to Reflected XSS on all stack traces' propertyPath parameters...
CVE-2018-14906
CVE-2018-14906 affects the 3CX Web server. The vulnerability is a reflected XSS in the stack trace generation, specifically the propertyPath parameter, in 3CX version 15.5.8801.3. The root cause is untrusted input reflected in the web interface, enabling an attacker to inject malicious script/HTM...