CVE-2021-35377 Information

Description

Cross Site Scripting vulnerability found in VICIdial v2.14-610c and v.2.10-415c allows attackers execute arbitrary code via the /agc/vicidial.php agc/vicidial-greay.php and /vicidial/KHOMP_admin.php parameters.

Reference

http://vicidial.com https://www.vicidial.org/VICIDIALforum/viewtopic.php?f=2&t=41634