Vulnerabilities > Avantfax > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-03-10 | CVE-2023-23326 | Cross-site Scripting vulnerability in Avantfax 3.3.7 A Stored Cross-Site Scripting (XSS) vulnerability exists in AvantFAX 3.3.7. | 5.4 |
| 2023-03-10 | CVE-2023-23327 | Information Exposure vulnerability in Avantfax 3.3.7 An Information Disclosure vulnerability exists in AvantFAX 3.3.7. | 4.9 |
| 2018-01-10 | CVE-2017-18024 | Cross-site Scripting vulnerability in Avantfax 3.3.3 AvantFAX 3.3.3 has XSS via an arbitrary parameter name to the default URI, as demonstrated by a parameter whose name contains a SCRIPT element and whose value is 1. | 6.1 |