Lucene search
K

7 matches found

Packet Storm News
Packet Storm News
added 2025/04/25 12:0 a.m.5 views

issabel-pbx 4.0.0-6 Cross Site Request Forgery

issabel-pbx version 4.0.0-6 proof of concept cross site request forgery exploit that creates a new user...

6.8CVSS6.4AI score0.00659EPSS
Exploits2
Prion
Prion
added 2023/07/13 10:15 p.m.23 views

Design/Logic Flaw

An issue in issabel-pbx v.4.0.0-6 allows a remote attacker to obtain sensitive information via the modules directory...

5CVSS7.3AI score0.03009EPSS
Exploits1References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/07/13 12:0 a.m.6 views

PT-2023-26035

Name of the Vulnerable Software and Affected Versions: issabel-pbx version 4.0.0-6 Description: A Cross Site Request Forgery CSRF issue allows a remote attacker to cause a denial of service via the delete new virtual fax function. Recommendations: For issabel-pbx version 4.0.0-6, consider disabli...

4.5CVSS4.9AI score0.00451EPSS
Exploits2References4
CNNVD
CNNVD
added 2023/07/13 12:0 a.m.3 views

Issabel PBX 安全漏洞

Issabel PBX is a software application. A free and open source software that allows you to build communication tools for your organization. A security vulnerability exists in Issabel PBX version v.4.0.0-6, which stems from a vulnerability that allows any remote attacker to view application-sensiti...

7.5CVSS7.8AI score0.03009EPSS
Exploits1References2
ATTACKERKB
ATTACKERKB
added 2023/07/11 2:15 a.m.6 views

CVE-2023-37190

A stored cross-site scripting XSS vulnerability in Issabel issabel-pbx v.4.0.0-6 allows attackers to execute arbitrary web scripts or HTML via a crafted payload injected into the Virtual Fax Name and Caller ID Name parameters under the New Virtual Fax feature...

4.8CVSS5.9AI score0.00413EPSS
Exploits1References3
CNNVD
CNNVD
added 2023/07/11 12:0 a.m.3 views

Issabel PBX 跨站脚本漏洞

Issabel PBX is a software application. A free and open source software that allows you to build communication tools for your organization. A cross-site scripting vulnerability exists in Issabel PBX version v.4.0.0-6, which originates from a vulnerability that allows attackers to execute arbitrary...

4.8CVSS5.3AI score0.00653EPSS
Exploits1References3
CNNVD
CNNVD
added 2023/07/10 12:0 a.m.3 views

Issabel PBX 跨站脚本漏洞

Issabel PBX is a software application. A free and open source software that allows you to build communication tools for your organization. A security vulnerability exists in Issabel issabel-pbx version v.4.0.0-6. An attacker can exploit this vulnerability to execute arbitrary web script or HTML v...

4.8CVSS5.7AI score0.00577EPSS
Exploits1References4
Rows per page
Query Builder