Security Advisory

CVE-2021-43695

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2021-11-29 13:34:03

Last updated 2024-08-04 04:03:08

Assigner mitre

State PUBLISHED

Description

issabelPBX version 2.11 is affected by a Cross Site Scripting (XSS) vulnerability. In file page.backup_restore.php, the exit function will terminate the script and print the message to the user. The message will contain $_REQUEST without sanitization, then there is a XSS vulnerability.

← Browse all CVEs View on cve.org ↗