Cross Site Scripting (XSS) exists in NCH Axon PBX v2.22 and earlier via the extension name (stored).
5.4CVSS
5.3AI Score
0.001EPSS
Cross Site Scripting (XSS) exists in NCH Axon PBX v2.22 and earlier via the line name (stored).
5.4CVSS
5.3AI Score
0.001EPSS
Cross Site Scripting (XSS) exists in NCH Axon PBX v2.22 and earlier via the outbound dialing plan (stored).
5.4CVSS
5.3AI Score
0.001EPSS
Cross Site Scripting (XSS) exists in NCH Axon PBX v2.22 and earlier via the blacklist IP address (stored).
5.4CVSS
5.3AI Score
0.001EPSS
Cross Site Scripting (XSS) exists in NCH Axon PBX v2.22 and earlier via the SipRule field (stored).
5.4CVSS
5.3AI Score
0.001EPSS
Cross Site Scripting (XSS) exists in NCH Axon PBX v2.22 and earlier via the primary phone field (stored).
5.4CVSS
5.3AI Score
0.001EPSS
Cross Site Scripting (XSS) exists in NCH Axon PBX v2.22 and earlier via the customer name field (stored).
5.4CVSS
5.3AI Score
0.001EPSS
Cross Site Scripting (XSS) exists in NCH Axon PBX v2.22 and earlier via /planprop?id= (reflected).
5.4CVSS
5.3AI Score
0.001EPSS
Cross Site Scripting (XSS) exists in NCH Axon PBX v2.22 and earlier via /extensionsinstruction?id= (reflected).
5.4CVSS
5.3AI Score
0.001EPSS
Cross Site Scripting (XSS) exists in NCH Axon PBX v2.22 and earlier via /ipblacklist?errorip= (reflected).
5.4CVSS
5.3AI Score
0.001EPSS