CVE-2018-6393

CVE-2018-6393

FreePBX 10.13.66-32bit allows post-authentication SQL injection via the order parameter.

Source: CVE-2018-6393