2 matches found
CVE-2026-9585 Unauthenticated Reflected Cross-Site Scripting (XSS) in Switchvox SMB Web Portal
An unauthenticated reflected cross-site scripting XSS vulnerability exists in Sangoma Switchvox SMB Edition version 8.3 104997. The application fails to properly sanitize the portal parameter supplied to the invalidbrowser and invalidbrowserlogin handlers. User-supplied data is reflected into...
CVE-2026-9585
CVE-2026-9585 affects Sangoma Switchvox SMB Edition 8.3 (104997). The vulnerability is an unauthenticated reflected XSS in the portal parameter sent to invalid_browser and invalid_browser_login handlers, where user-supplied data is reflected into JavaScript, enabling attacker-controlled script ex...