7 matches found
issabel-pbx 4.0.0-6 Cross Site Request Forgery
issabel-pbx version 4.0.0-6 proof of concept cross site request forgery exploit that creates a new user...
Design/Logic Flaw
An issue in issabel-pbx v.4.0.0-6 allows a remote attacker to obtain sensitive information via the modules directory...
PT-2023-26035
Name of the Vulnerable Software and Affected Versions: issabel-pbx version 4.0.0-6 Description: A Cross Site Request Forgery CSRF issue allows a remote attacker to cause a denial of service via the delete new virtual fax function. Recommendations: For issabel-pbx version 4.0.0-6, consider disabli...
Issabel PBX 安全漏洞
Issabel PBX is a software application. A free and open source software that allows you to build communication tools for your organization. A security vulnerability exists in Issabel PBX version v.4.0.0-6, which stems from a vulnerability that allows any remote attacker to view application-sensiti...
CVE-2023-37190
A stored cross-site scripting XSS vulnerability in Issabel issabel-pbx v.4.0.0-6 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Virtual Fax Name and Caller ID Name parameters under the New Virtual Fax feature...
Issabel PBX 跨站脚本漏洞
Issabel PBX is a software application. A free and open source software that allows you to build communication tools for your organization. A cross-site scripting vulnerability exists in Issabel PBX version v.4.0.0-6, which originates from a vulnerability that allows attackers to execute arbitrary...
Issabel PBX 跨站脚本漏洞
Issabel PBX is a software application. A free and open source software that allows you to build communication tools for your organization. A security vulnerability exists in Issabel issabel-pbx version v.4.0.0-6. An attacker can exploit this vulnerability to execute arbitrary web script or HTML v...