IDCVSSSummaryLast (major) updatePublished
CVE-2019-9593 4.3
A reflected Cross-site scripting (XSS) vulnerability in ShoreTel Connect ONSITE 18.82.2000.0 allows remote attackers to inject arbitrary web script or HTML via the page parameter.
06-03-2019 - 11:29 06-03-2019 - 11:29
CVE-2019-9592 4.3
A reflected Cross-site scripting (XSS) vulnerability in ShoreTel Connect ONSITE 19.45.1602.0 allows remote attackers to inject arbitrary web script or HTML via the url parameter.
06-03-2019 - 11:29 06-03-2019 - 11:29
CVE-2019-9591 4.3
A reflected Cross-site scripting (XSS) vulnerability in ShoreTel Connect ONSITE before 19.49.1500.0 allows remote attackers to inject arbitrary web script or HTML via the brandUrl parameter.
06-03-2019 - 11:29 06-03-2019 - 11:29
CVE-2018-5782 10.0
A vulnerability in the conferencing component of Mitel Connect ONSITE, versions R1711-PREM and earlier, and Mitel ST 14.2, release GA28 and earlier, could allow an unauthenticated attacker to inject PHP code using specially crafted requests to the vs
14-03-2018 - 12:29 14-03-2018 - 12:29
CVE-2018-5781 10.0
A vulnerability in the conferencing component of Mitel Connect ONSITE, versions R1711-PREM and earlier, and Mitel ST 14.2, release GA28 and earlier, could allow an unauthenticated attacker to inject PHP code using specially crafted requests to the ve
14-03-2018 - 12:29 14-03-2018 - 12:29
CVE-2018-5780 10.0
A vulnerability in the conferencing component of Mitel Connect ONSITE, versions R1711-PREM and earlier, and Mitel ST 14.2, release GA28 and earlier, could allow an unauthenticated attacker to inject PHP code using specially crafted requests to the vn
14-03-2018 - 12:29 14-03-2018 - 12:29
CVE-2018-5779 10.0
A vulnerability in the conferencing component of Mitel Connect ONSITE, versions R1711-PREM and earlier, and Mitel ST 14.2, release GA28 and earlier, could allow an unauthenticated attacker to copy a malicious script into a newly generated PHP file an
14-03-2018 - 12:29 14-03-2018 - 12:29
Back to Top Mark selected
Back to Top