In EPESI 1.8.2 rev20170830, there is Stored XSS in the Tasks Phonecall Notes Title parameter.
5.4CVSS
5.1AI Score
0.001EPSS
In EPESI 1.8.2 rev20170830, there is Stored XSS in the Phonecalls Description parameter.
5.4CVSS
5.1AI Score
0.001EPSS
In EPESI 1.8.2 rev20170830, there is Stored XSS in the Phonecalls Subject parameter.
5.4CVSS
5.1AI Score
0.001EPSS
In EPESI 1.8.2 rev20170830, there is Stored XSS in the Tasks Alerts Title parameter.
5.4CVSS
5.1AI Score
0.001EPSS
5.4CVSS
5.1AI Score
0.001EPSS
In EPESI 1.8.2 rev20170830, there is Stored XSS in the Tasks Description parameter.
5.4CVSS
5.1AI Score
0.001EPSS
Cross-site scripting (XSS) vulnerability in modules/Base/Box/check_for_new_version.php in EPESI in Telaxus/EPESI 1.8.2 and earlier allows remote attackers to inject arbitrary web script or HTML via a crafted URI that lacks the cid parameter.
6.1CVSS
5.9AI Score
0.001EPSS