2019-10-21 19:30:38
mitre
PUBLISHED
An issue was discovered in FusionPBX up to 4.5.7. In the file appconference_controlsconference_control_details.php, an unsanitized id variable coming from the URL is reflected in HTML on 2 occasions, leading to XSS.