Cross-site scripting (XSS) vulnerability in the login page in Avaya Communications Manager (CM) S87XX, S8500, and S8300 products prior to 3.1.3 allows remote malicious users to inject arbitrary web script or HTML via the Login field.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
avaya s8710 cm 2.0 |
||
avaya s8710 cm 3.1 |
||
avaya s8710 r2.0.0 |
||
avaya s8710 r2.0.1 |
||
avaya s8300 cm 2.0 |
||
avaya s8300 cm 3.1 |
||
avaya s8300 r2.0.0 |
||
avaya s8300 r2.0.1 |
||
avaya s8500 cm 2.0 |
||
avaya s8500 cm 3.1 |
||
avaya s8500 r2.0.0 |
||
avaya s8500 r2.0.1 |
||
avaya s8700 cm 2.0 |
||
avaya s8700 cm 3.1 |
||
avaya s8700 r2.0.0 |
||
avaya s8700 r2.0.1 |