Security Advisory

CVE-2019-19386

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-11-28 23:56:00

Last updated 2024-08-05 02:16:47

Assigner mitre

State PUBLISHED

Description

A cross-site scripting (XSS) vulnerability in app/voicemail_greetings/voicemail_greeting_edit.php in FusionPBX 4.4.1 allows remote attackers to inject arbitrary web script or HTML via the id and/or voicemail_id parameter.

← Browse all CVEs View on cve.org ↗