CVE-2018-17562

2018-10-03T20:29:00
ID CVE-2018-17562
Type cve
Reporter cve@mitre.org
Modified 2018-11-21T23:32:00

Description

Multi-Tech FaxFinder before 5.1.6 has SQL Injection via a status/call_details?oid= URI, allowing an attacker to extract the underlying database schema to further disclose other fax server information through different injection points.