PT-2019-14909 · Fusionpbx · Fusionpbx
Name of the Vulnerable Software and Affected Versions: FusionPBX versions prior to 4.5.8 Description: The issue concerns the use of an unsanitized eavesdrop dest variable in the content.php file, which is reflected in HTML and leads to a cross-site scripting XSS issue. This allows for potential...