5 matches found
CVE-2024-23387
FusionPBX prior to 5.1.0 contains a cross-site scripting vulnerability. If this vulnerability is exploited by a remote authenticated attacker with an administrative privilege, an arbitrary script may be executed on the web browser of the user who is logging in to the product...
CVE-2024-23387
creationtimestamp| type| source ---|---|--- 2024-01-19 05:21:47+00:00| seen| https://t.me/ctinow/170057...
CVE-2024-23387
FusionPBX prior to 5.1.0 contains a cross-site scripting vulnerability. If this vulnerability is exploited by a remote authenticated attacker with an administrative privilege, an arbitrary script may be executed on the web browser of the user who is logging in to the product...
CVE-2024-23387
FusionPBX versions prior to 5.1.0 are affected by a stored cross-site scripting (XSS) vulnerability (CVE-2024-23387). The issue allows a remote authenticated attacker with administrative privileges to cause arbitrary JavaScript to execute in the web browser of a user logging in to the product. Af...
CVE-2024-23387
FusionPBX prior to 5.1.0 contains a cross-site scripting vulnerability. If this vulnerability is exploited by a remote authenticated attacker with an administrative privilege, an arbitrary script may be executed on the web browser of the user who is logging in to the product...