CVE-2019-9540

: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in prefs.asp of Telos Automated Message Handling System allows a remote attacker to inject arbitrary script into an AMHS session. This issue affects: Telos Automated Message Handling System versions...

CVE-2019-9537

: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in uploaditem.asp of Telos Automated Message Handling System allows a remote attacker to inject arbitrary script into an AMHS session. This issue affects: Telos Automated Message Handling System...

Cross site scripting

: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in ModalWindowPopup.asp of Telos Automated Message Handling System allows a remote attacker to inject arbitrary script into an AMHS session. This issue affects: Telos Automated Message Handling Syst...

Cross site scripting

: Improper Neutralization of Input During Web Page Generation 'Cross-site Scripting' vulnerability in prefs.asp of Telos Automated Message Handling System allows a remote attacker to inject arbitrary script into an AMHS session. This issue affects: Telos Automated Message Handling System versions...

Information disclosure

: Information Exposure vulnerability in itemlookup.asp of Telos Automated Message Handling System allows a remote attacker to inject arbitrary script into an AMHS session. This issue affects: Telos Automated Message Handling System versions prior to 4.1.5.5...

CVE-2019-9540

CVE-2019-9540 affects Telos Automated Message Handling System (AMHS) with a cross-site scripting vulnerability in prefs.asp. The issue arises from improper input neutralization during web page generation, allowing a remote attacker to inject arbitrary script into an AMHS session. Affected version...

Telos AMHS Multiple Cross Site Scripting and Information Disclosure Vulnerabilities

Description Telos AMHS is prone to multiple cross-site scripting vulnerabilities and an information-disclosure vulnerability. An attacker may leverage these issues to obtain sensitive information or execute arbitrary script code in the browser of an unsuspecting user in the context of the affecte...

Telos Automated Message Handling System contains multiple vulnerabilities

Overview Telos Automated Message Handling System AMHS contains multiple XSS vulnerabilities and a database information disclosure vulnerability. Description Telos AMHS is a web-based messaging system that supports DoD and Intelligence Community IC security marking requirements. AMHS versions prio...