8.4 High
AI Score
Confidence
Low
0.001 Low
EPSS
Percentile
43.8%
SQL injection vulnerability in a2billing/customer/iridium_threed.php in Elastix 2.5.0 and earlier allows remote attackers to execute arbitrary SQL commands via the transactionID parameter.
packetstormsecurity.com/files/130698/Elastix-2.5.0-SQL-Injection.html
www.exploit-db.com/exploits/36305/