14 matches found
CVE-2019-16988
In FusionPBX up to v4.5.7, the file app\basicoperatorpanel\resources\content.php uses an unsanitized "eavesdropdest" variable coming from the URL, which is reflected on 3 occasions in HTML, leading to XSS...
CVE-2019-16988
In FusionPBX up to v4.5.7, the file app\basicoperatorpanel\resources\content.php uses an unsanitized "eavesdropdest" variable coming from the URL, which is reflected on 3 occasions in HTML, leading to XSS...
CVE-2019-16988
FusionPBX up to v4.5.7 is affected by a cross-site scripting (XSS) vulnerability in app\basic_operator_panel\resources\content.php due to an unsanitized URL parameter (eavesdrop_dest) reflected in HTML on three occasions. The issue is consistently described across multiple sources (CVE-2019-16988...
CVE-2019-16991
CVE-2019-16991 affects FusionPBX up to v4.5.7. The vulnerability is a cross-site scripting (XSS) caused by an unsanitized URL parameter “file” used in app\edit\filedelete.php, which is reflected in HTML. The root cause is insufficient input sanitization of the file parameter, allowing attacker-co...
CVE-2019-16987
Summary: CVE-2019-16987 affects FusionPBX up to version 4.5.7. The vulnerability exists in the file app/contacts/contact_import.php, where an unsanitized query_string parameter from the URL is reflected in HTML, causing a reflected XSS. The linked Red Hat/NVD entries confirm the same issue. Impac...
CVE-2019-16985
FusionPBX contains a path traversal/file-deletion vulnerability in versions up to 4.5.7. The file app\xml_cdr\xml_cdr_delete.php uses an unsanitized URL parameter rec, which is base64 decoded and can cause deletion of arbitrary system files. Reported impact is arbitrary file deletion; remediation...
CVE-2019-16990
In FusionPBX up to v4.5.7, the file app/musiconhold/musiconhold.php uses an unsanitized "file" variable coming from the URL, which takes any pathname base64 encoded and allows a download of it...
CVE-2019-16978
In FusionPBX up to v4.5.7, the file app\devices\devicesettings.php uses an unsanitized "id" variable coming from the URL, which is reflected on 2 occasions in HTML, leading to XSS...
Design/Logic Flaw
In FusionPBX up to v4.5.7, the file app/musiconhold/musiconhold.php uses an unsanitized "file" variable coming from the URL, which takes any pathname base64 encoded and allows a download of it...
CVE-2019-16982
FusionPBX up to v4.5.7 is vulnerable to an XSS flaw in the file app/access_controls/access_control_nodes.php where an unsanitized id taken from the URL is reflected in HTML. This is caused by insufficient input sanitization in the access controls node listing, enabling injection of client-side sc...
CVE-2019-16990
In FusionPBX up to v4.5.7, the file app/musiconhold/musiconhold.php uses an unsanitized "file" variable coming from the URL, which takes any pathname base64 encoded and allows a download of it...
CVE-2019-16979
CVE-2019-16979 affects FusionPBX up to version 4.5.7. The vulnerability is triggered by an unsanitized URL parameter in the file app\contacts\contact_urls.php , where the id value is reflected in HTML, causing a cross-site scripting (XSS) flaw. Public sources consistently describe the impact as c...
CVE-2019-16978
CVE-2019-16978 affects FusionPBX up to v4.5.7, where the file app\devices\device_settings.php reads an unsanitized id from the URL and reflects it twice in HTML, causing XSS. The issue arises from insufficient input sanitization in the device_settings component. Impact is client-side script execu...
Fedora 23 : kernel (2016-80edb9d511)
Update to the latest upstream stable release, Linux v4.5.7. Note that Tenable Network Security has extracted the preceding description block directly from the Fedora update system website. Tenable has attempted to automatically clean and format it as much as possible without introducing additiona...