CVE-2023-33758 Information

Description

Splicecom Maximiser Soft PBX v1.5 and before was discovered to contain a cross-site scripting (XSS) vulnerability via the CLIENT_NAME and DEVICE_GUID fields in the login component.

Reference

https://github.com/twignet/splicecom