3 matches found
CVE-2021-37458
Cross Site Scripting XSS exists in NCH Axon PBX v2.22 and earlier via the primary phone field stored...
CVE-2021-37458
Cross Site Scripting XSS exists in NCH Axon PBX v2.22 and earlier via the primary phone field stored...
CVE-2021-37458
CVE-2021-37458 describes a stored XSS vulnerability in NCH Axon PBX, affecting v2.22 and earlier, via the primary phone field. The underlying issue is failure to properly filter input in that field, enabling client‑side code execution. Data provided lists affected product and version, and states ...