VYPR
Medium severity6.1NVD Advisory· Published Jan 10, 2018· Updated Jun 17, 2026

CVE-2017-18024

CVE-2017-18024

Description

AvantFAX 3.3.3 has XSS via an arbitrary parameter name to the default URI, as demonstrated by a parameter whose name contains a SCRIPT element and whose value is 1.

AI Insight

LLM-synthesized narrative grounded in this CVE's description and references.

Affected products

1

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.