3 matches found
CVE-2019-19388
A cross-site scripting XSS vulnerability in app/dialplans/dialplandetailedit.php in FusionPBX 4.4.1 allows remote attackers to inject arbitrary web script or HTML via the dialplanuuid parameter...
CVE-2019-19388
A cross-site scripting XSS vulnerability in app/dialplans/dialplandetailedit.php in FusionPBX 4.4.1 allows remote attackers to inject arbitrary web script or HTML via the dialplanuuid parameter...
CVE-2019-19388
FusionPBX 4.4.1 is affected by a cross-site scripting (XSS) vulnerability in app/dialplans/dialplan_detail_edit.php via the dialplan_uuid parameter. The issue allows remote attackers to inject arbitrary web script or HTML. Affected component appears to be the dialplan_detail_edit function/file; r...