>> ShoreTel Connect ONSITE Cross Site Scripting / Session Fixation

USER: deepcore // DATE: 2019-04-10 01:10 // MODIFIED: 2019-04-10

ShoreTel Connect ONSITE versions prior to 19.49.1500.0 suffer from cross site scripting and session fixation vulnerabilities.