Lucene search

CVE-2019-16970

🗓️ 21 Oct 2019 20:11:15Reported by mitreType

FusionPBX 4.5.7, unsanitized "savemsg" variable in sip_status.php leads to XS

Reporter	Title	Published	Views	Family All 3
Cvelist	CVE-2019-16970	21 Oct 201919:52	–	cvelist
NVD	CVE-2019-16970	21 Oct 201920:15	–	nvd
Prion	Cross site scripting	21 Oct 201920:15	–	prion

Nvd

Node

fusionpbx fusionpbxRange≤4.5.7

Source	Link
resp3ctblog	www.resp3ctblog.wordpress.com/2019/10/19/fusionpbx-xss-3/
github	www.github.com/fusionpbx/fusionpbx/commit/a55f1cd5d8edd655058152e9acf212680d5b75f3

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

21 Oct 2019 20:15Current

6.2Medium risk

Vulners AI Score6.2

CVSS24.3

CVSS36.1

EPSS0.001

CWE-79