CVE-2017-17832
ServersCheck Monitoring Software prior to 14.2.3 is affected by a cross-site scripting (XSS) vulnerability. The issue arises because user-supplied data passed in the settings_SMS_ALERT_TYPE parameter is not validated/sanitized, allowing JavaScript to be executed on the Settings - SMS Alerts page ...