2 matches found
CVE-2023-33758
Splicecom Maximiser Soft PBX v1.5 and before was discovered to contain a cross-site scripting XSS vulnerability via the CLIENTNAME and DEVICEGUID fields in the login component...
CVE-2023-33758
Splicecom Maximiser Soft PBX v1.5 and earlier is affected by a cross-site scripting (XSS) vulnerability in the login component, exploitable via the CLIENT_NAME and DEVICE_GUID fields. The issue is documented across multiple sources (NVD/Red Hat/CVE lists) with a CVSSv3.1 base score of 6.1 (MEDIUM...