Security Advisory

CVE-2021-43403

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-11-05 17:36:35

Last updated 2024-08-04 03:55:28

Assigner mitre

State PUBLISHED

Description

An issue was discovered in FusionPBX before 4.5.30. The log_viewer.php Log View page allows an authenticated user to choose an arbitrary filename for download (i.e., not necessarily freeswitch.log in the intended directory).

← Browse all CVEs View on cve.org ↗