Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
There is a reflected XSS vulnerability in AXON PBX 2.02 via the "AXON->Auto-Dialer->Agents->Name" field. The vulnerability exists due to insufficient filtration of user-supplied data. A remote attacker can execute arbitrary HTML and script code in a browser in the context of the vulnerable application.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
AXON PBX 跨站脚本漏洞
Vulnerability Description
AXON PBX是一套应用于商业环境中的虚拟电话交换机软件。该软件主要用于管理电话呼叫中心,以软件的方式实现了电话交换机的功能。 AXON PBX 2.02版本中的存在跨站脚本漏洞,该漏洞源于程序没有充分过滤用户提交的数据。远程攻击者可借助‘AXON->Auto-Dialer->Agents->Name’字段利用该漏洞在浏览器中执行任意HTML和脚本代码。
CVSS Information
N/A
Vulnerability Type
N/A