2 matches found
CVE-2018-5780
A vulnerability in the conferencing component of Mitel Connect ONSITE, versions R1711-PREM and earlier, and Mitel ST 14.2, release GA28 and earlier, could allow an unauthenticated attacker to inject PHP code using specially crafted requests to the vnewmeeting.php page. Successful exploit could...
CVE-2018-5780
The CVE-2018-5780 issue affects Mitel Connect ONSITE (versions R1711-PREM and earlier) and Mitel ST (14.2 GA28 and earlier), where an unauthenticated attacker could inject PHP code via crafted requests to vnewmeeting.php, enabling arbitrary PHP execution within the application. Connected CNVD/NVD...