SecuritySpace - CVE-2009-4038

Vulnerability Search		Search 324607 CVE descriptions and 145615 test descriptions, access 10,000+ cross references.
	Tests CVE All

CVE ID: CVE-2009-4038

Description: Multiple cross-site scripting (XSS) vulnerabilities in NCH Software Axon Virtual PBX 2.10 and 2.11 allow remote attackers to inject arbitrary web script or HTML via the (1) onok or (2) oncancel parameter to the logon program. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.

Test IDs: 1.3.6.1.4.1.25623.1.0.900984

Cross References: Common Vulnerability Exposure (CVE) ID: CVE-2009-4038
http://osvdb.org/59871
http://secunia.com/advisories/37157

CVE ID:	CVE-2009-4038
Description:	Multiple cross-site scripting (XSS) vulnerabilities in NCH Software Axon Virtual PBX 2.10 and 2.11 allow remote attackers to inject arbitrary web script or HTML via the (1) onok or (2) oncancel parameter to the logon program. NOTE: the provenance of this information is unknown; the details are obtained solely from third party information.
Test IDs:	1.3.6.1.4.1.25623.1.0.900984
Cross References:	Common Vulnerability Exposure (CVE) ID: CVE-2009-4038 http://osvdb.org/59871 http://secunia.com/advisories/37157