CVE-2018-19926

CVE-2018-19926

EPSS 0.7%

Zenitel Norway IP-StationWeb before 4.2.3.9 allows reflected XSS via the goform/ PATH_INFO.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://misteralfa-hack.blogspot.com/2018/12/zenitel-ip-stationweb-cross-site-script.html