Medium severity6.1NVD Advisory· Published Jan 10, 2018· Updated Jun 17, 2026
CVE-2017-18024
CVE-2017-18024
Description
AvantFAX 3.3.3 has XSS via an arbitrary parameter name to the default URI, as demonstrated by a parameter whose name contains a SCRIPT element and whose value is 1.
AI Insight
LLM-synthesized narrative grounded in this CVE's description and references.
Affected products
1Patches
Vulnerability mechanics
References
1- packetstormsecurity.com/files/145776/AvantFAX-3.3.3-Cross-Site-Scripting.htmlnvdExploitThird Party AdvisoryVDB Entry
News mentions
0No linked articles in our index yet.