CVE

CVE-2018-15892

CVE-2018-15892

FreePBX 13 and 14 has SQL Injection in the DISA module via the hangup variable on the /admin/config.php?display=disa&view=form page.

Source: CVE-2018-15892

Exit mobile version