Exploitation Summary
EIP tracks 1 public exploit for CVE-2019-9592. PoCs published by Ramikan.
AI-analyzed exploit summary The provided text describes multiple reflected XSS and session fixation vulnerabilities in Shoretel Connect software. It includes affected URLs, parameters, and versions, but does not contain executable exploit code.
Description
A reflected Cross-site scripting (XSS) vulnerability in ShoreTel Connect ONSITE 19.45.1602.0 allows remote attackers to inject arbitrary web script or HTML via the url parameter.
Exploits (1)
The provided text describes multiple reflected XSS and session fixation vulnerabilities in Shoretel Connect software. It includes affected URLs, parameters, and versions, but does not contain executable exploit code.
References (3)
Scores
CVSS:3.1/AV:N/AC:L/PR:N/UI:R/S:C/C:L/I:L/A:N