Cross Site Scripting vulnerability found in VICIdial v2.14-610c and v.2.10-415c allows attackers execute arbitrary code via the /agc/vicidial.php, agc/vicidial-greay.php, and /vicidial/KHOMP_admin.php parameters.
References
Link | Resource |
---|---|
http://vicidial.com | Product |
https://www.vicidial.org/VICIDIALforum/viewtopic.php?f=2&t=41634 | Vendor Advisory |
History
No history.
MITRE Information
Status: PUBLISHED
Assigner: mitre
Published: 2023-03-06T00:00:00
Updated: 2023-03-06T00:00:00
Reserved: 2021-06-23T00:00:00
Link: CVE-2021-35377
JSON object: View
NVD Information
Status : Analyzed
Published: 2023-03-06T20:15:09.497
Modified: 2023-03-13T18:46:09.380
Link: CVE-2021-35377
JSON object: View
Redhat Information
No data.
CWE