3 matches found
CVE-2021-37455
Cross Site Scripting XSS exists in NCH Axon PBX v2.22 and earlier via the outbound dialing plan stored...
CVE-2021-37455
Cross Site Scripting XSS exists in NCH Axon PBX v2.22 and earlier via the outbound dialing plan stored...
CVE-2021-37455
CVE-2021-37455 describes a stored cross-site scripting (XSS) vulnerability in NCH Axon PBX, affecting v2.22 and earlier. The issue arises in the outbound dialing plan, where user-supplied data is not properly filtered for special characters, enabling execution of client-side code. The connected s...