Security Advisory

CVE-2019-16968

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-10-21 19:30:38

Last updated 2024-08-05 01:24:48

Assigner mitre

State PUBLISHED

Description

An issue was discovered in FusionPBX up to 4.5.7. In the file appconference_controlsconference_control_details.php, an unsanitized id variable coming from the URL is reflected in HTML on 2 occasions, leading to XSS.

← Browse all CVEs View on cve.org ↗